by r0t,der4444,cembo,VietMafia

Sunday, November 27, 2005

PHP Doc System 1.5.1 Local file inclusion vuln.

PHP Doc System 1.5.1 Local file inclusion vuln.
Vuln. dicovered by : r0t
Date: 27 nov. 2005
Vendor:http://www.alexking.org/
affected version: 1.5.1 and prior

Product Description:
A modular PHP system for creating documentation. You create modules for documentation elements (installation steps, buttons, screens, etc.) and then refer to them instead of having to copy/paste information you'd want to have in 2 or more places. For example, you have an application that has buttons on a toolbar which appears on several screens. You define each button, define the toolbar and include the buttons, then define the screens and include the toolbar which in turn includes the buttons. It can run as dynamic PHP, including everything on the fly or it can output static HTML that you can include in your software distribution. Version 1.5 adds a 'related links' sidebar and a module generator. Offered as Donationware.

Vuln. description:
Input passed to the "show" parameter in "index.php" isn't properly verified, before it is used to include files . This can be exploited to include arbitrary files from local resources or to view files from local resource.

example:
/index.php?show=../File

Solution:
Edit the source code to ensure that input is properly sanitised.

2 Comments:

Anonymous mortgage broker told...

thought-provoking, mootable pv. just my thoughts, well anyways gl & be chipper is what i say

1:48 AM

 
Blogger Mortgage Center told...

Hey, you have a great blog here! I'm definitely going to bookmark you!

I have a uk mortgage
site/blog. It pretty much covers uk mortgage
related stuff.

Come and check it out if you get time :-)

3:24 AM

 

Post a Comment

<< Home

 
Copyright (c) 2006 Pridels Sec Crew