GeekLog 2.x - 'ImageImageMagick.php' Remote File Inclusion

Related Vulnerabilities: CVE-2007-2793  
Publish Date: 17 May 2007
Author: diesl0w
                05/18/2007

GeekLog 2.* (ImageImageMagick.php) RFI Vuln

---------------------------------[ Vuln Code ]--------------------------------

[geeklog path]/system/ImageImageMagick.php?glConf[path_system]=

-----------------------------------[ Issue ]----------------------------------

-Line 3 of ImageImageMagick.php-

require $glConf['path_system'] . 'BaseImage.php';

-----------------------------------[ Google ]----------------------------------

"Powered By Geeklog"

----------------------------------[ Solution ]---------------------------------
Change php.ini and set allow_url_fopen to Off
(Not tested but disabling URL-Access will fix the issue)


Insert the following code before line 3:

Add the following code:

if (strpos ($_SERVER['PHP_SELF'], 'ImageImageMagick.php') !== false){ die('Cant access file by itself.'); }

# [2007-05-17]