Snipe Gallery 3.1 – ‘image.php?cfg_admin_path’ Remote File Inclusion

Exploit Database
110 阅读

作者： Sn!pEr.S!Te Hacker

日期： 2010-05-20
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/34017/

source: https://www.securityfocus.com/bid/40279/info

Snipe Gallery is prone to multiple remote file-include vulnerabilities because it fails to properly sanitize user-supplied input.

An attacker can exploit these issues to include an arbitrary remote file containing malicious PHP code and execute it in the context of the webserver process. This may facilitate a compromise of the application and the underlying system; other attacks are also possible.

The issues affect Snipe Gallery versions 3.1.5 and prior.

http://www.example.com/image.php?cfg_admin_path=[shell.txt ]

last Exploits
Snipe Gallery 3.1 – ‘image.php?cfg_admin_path’ Remote File Inclusion的更多信息

MoME CMS 0.8.5 – Remote Authentication Bypass：
OpenCart 1.5.1.2 – Blind SQL Injection：
Elxis CMS 2009 – ‘administrator/index.php’ URI Cross-Site Scripting：
Exam Form Submission System 1.0 – SQL Injection Authentication Bypass：
Uploader 0.7 – Arbitrary File Upload：
WordPress Plugin Duplicate Page 4.4.1 – Stored Cross-Site Scripting (XSS)：
Matrimony Script 2.7 – SQL Injection：
Red Hat JBoss EAP – Deserialization of Untrusted Data：