arfis

automated Remote File Inclusion search

RFI (0.2): ClanLite September 13, 2007

Filed under: RFI — arfis @ 11:11 pm

Project Name: ClanLite
Project Link: http://sourceforge.net/projects/clanlite/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/clanlite/clanlite-1.23.01.2005.zip
RFI Info:
File: tmp/clanlite-1.23.01.2005/modules/serveur_jeux.php
Line: 24
Vuln Code: require_once($root_path.’service/gsquery/gsQuery.php’);

File: tmp/clanlite-1.23.01.2005/conf/conf-php.php
Line: 3
Vuln Code: @include($root_path.’config.php’);

(found with version 0.2 – 930 projects processed so far)