AuraCMS index.php pilih file include
| auracms-indexpilih-file-include (36539) |  Medium Risk |
Description:
AuraCMS could allow a remote attacker to include arbitrary files. A remote attacker could send a specially-crafted URL request to the index.php script using the pilih parameter in a UNC share pathname, ftp, ftps, or ssh2.sftp URL to specify a malicious file from a remote system, which could allow the attacker to execute arbitrary code on the vulnerable Web server.
Platforms Affected:
- auraCMS, auraCMS 2.1
Remedy:
No remedy available as of July 4, 2009.
Consequences:
Gain Access
References:
- AuraCMS Web site, AuraCMS v2.0 - Indonesian Opensource CMS at http://www.auracms.org/.
- BID-25621: AuraCMS mod/contak.php Arbitrary File Upload Vulnerability
- CVE-2007-4886: Incomplete blacklist vulnerability in index.php in AuraCMS 1.x and probably 2.x allows remote attackers to execute arbitrary PHP code via a (1) UNC share pathname, or a (2) ftp, (3) ftps, or (4) ssh2.sftp URL, in the pilih parameter, for which PHP remote file inclusion is blocked only for http URLs.
Reported:
Sep 10, 2007
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net