arfis

automated Remote File Inclusion search

RFI (0.2): EleganTK September 13, 2007

Filed under: RFI — arfis @ 11:29 pm

Project Name: EleganTK
Project Link: http://sourceforge.net/projects/elegantk/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/elegantk/elegantk-1.0.0.zip
RFI Info:
File: tmp/elegantk-1.0.0/elegantk/core/classes/htmlMimeMail.php
Line: 6
Vuln Code: include_once($classes_path.”smtp.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/cell.php
Line: 6
Vuln Code: include_once($classes_path.”container.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFfontstyle.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFlayout.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/smtp.php
Line: 6
Vuln Code: include_once($classes_path.”boolean.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFsubobject.php
Line: 6
Vuln Code: include_once($classes_path.”invisiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/jpgraphsubobjectcollection.php
Line: 6
Vuln Code: include_once($classes_path.”collection.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/standalonecomponent.php
Line: 6
Vuln Code: include_once($classes_path.”component.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/component.php
Line: 6
Vuln Code: include_once($classes_path.”object.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/windowspane.php
Line: 6
Vuln Code: include_once($classes_path.”visiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/intenum.php
Line: 2
Vuln Code: include_once($classes_path.”integer.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/submitimage.php
Line: 6
Vuln Code: include_once($classes_path.”formelement.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/gradientstyle.php
Line: 6
Vuln Code: include_once($classes_path.”intenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/real.php
Line: 6
Vuln Code: include_once($classes_path.”singlevalue.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/radiobutton.php
Line: 6
Vuln Code: include_once($classes_path.”formelement.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/checkbox.php
Line: 6
Vuln Code: include_once($classes_path.”formelement.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFdoc.php
Line: 6
Vuln Code: include_once($classes_path.”FPDF.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/combo.php
Line: 6
Vuln Code: include_once($classes_path.”elgtkcombo.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/style.php
Line: 6
Vuln Code: include_once($classes_path.”unslavedcomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFlinetext.php
Line: 6
Vuln Code: include_once($classes_path.”FPDFsubobject.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/link.php
Line: 6
Vuln Code: include_once($classes_path.”container.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/htmlmimemailancestor.php
Line: 6
Vuln Code: include_once($classes_path.”unslavedcomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/jpgraphText.php
Line: 19
Vuln Code: include_once($classes_path.”string.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/fontstyle.php
Line: 6
Vuln Code: include_once($classes_path.”intenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/image.php
Line: 6
Vuln Code: include_once($classes_path.”visiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFtextzone.php
Line: 6
Vuln Code: include_once($classes_path.”FPDFsubobject.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/integerlist.php
Line: 6
Vuln Code: include_once($classes_path.”baselist.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/integer.php
Line: 6
Vuln Code: include_once($classes_path.”singlevalue.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFsubfontstyle.php
Line: 6
Vuln Code: include_once($classes_path.”FPDFfontstyle.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/jpgraphYscale.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/mysqlview.php
Line: 6
Vuln Code: include_once($classes_path.”mysqlquery.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFbordertype.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/halign.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/mysqllabel.php
Line: 6
Vuln Code: include_once($classes_path.”mysqlquery.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/singlevalue.php
Line: 6
Vuln Code: include_once($classes_path.”basetype.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/multicontainer.php
Line: 6
Vuln Code: include_once($classes_path.”visiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/submitbutton.php
Line: 6
Vuln Code: include_once($classes_path.”formelement.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFpagecollection.php
Line: 6
Vuln Code: include_once($classes_path.”collection.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/booleanlist.php
Line: 6
Vuln Code: include_once($classes_path.”baselist.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/visiblecomponent.php
Line: 6
Vuln Code: include_once($classes_path.”component.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/color.php
Line: 6
Vuln Code: include_once($classes_path.”string.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/collection.php
Line: 6
Vuln Code: include_once($classes_path.”itemslist.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/basetype.php
Line: 6
Vuln Code: include_once($classes_path.”object.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDForientation.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/formelement.php
Line: 6
Vuln Code: include_once($classes_path.”visiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/gradienttype.php
Line: 6
Vuln Code: include_once($classes_path.”intenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/passwordinput.php
Line: 6
Vuln Code: include_once($classes_path.”formelement.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/strictnaturalinteger.php
Line: 6
Vuln Code: include_once($classes_path.”naturalinteger.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFformat.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFsubfontfamily.php
Line: 6
Vuln Code: include_once($classes_path.”FPDFfontfamily.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/button.php
Line: 6
Vuln Code: include_once($classes_path.”elgtkbutton.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/jpgraphobject.php
Line: 6
Vuln Code: include_once($classes_path.”jpgraphcomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/simpletree.php
Line: 6
Vuln Code: include_once($classes_path.”elgtkctree.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/string.php
Line: 6
Vuln Code: include_once($classes_path.”singlevalue.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/itemslistcomponent.php
Line: 6
Vuln Code: include_once($classes_path.”invisiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/scrollbars.php
Line: 6
Vuln Code: include_once($classes_path.”elgtkscrolledwindow.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/baselist.php
Line: 6
Vuln Code: include_once($classes_path.”itemslist.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/visiblecomponentcollection.php
Line: 6
Vuln Code: include_once($classes_path.”collection.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/halignlist.php
Line: 6
Vuln Code: include_once($classes_path.”baselist.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/progressbar.php
Line: 6
Vuln Code: include_once($classes_path.”visiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFimage.php
Line: 6
Vuln Code: include_once($classes_path.”FPDFsubobject.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/textarea.php
Line: 6
Vuln Code: include_once($classes_path.”formelement.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/mysqlinput.php
Line: 6
Vuln Code: include_once($classes_path.”mysqlquery.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFpage.php
Line: 6
Vuln Code: include_once($classes_path.”invisiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/jpgraphfooter.php
Line: 6
Vuln Code: include_once($classes_path.”jpgraphcomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/label.php
Line: 6
Vuln Code: include_once($classes_path.”elgtklabel.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/form.php
Line: 6
Vuln Code: include_once($classes_path.”container.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/cellcollection.php
Line: 6
Vuln Code: include_once($classes_path.”collection.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/SuperScriptText.php
Line: 6
Vuln Code: include_once($classes_path.”jpgraphText.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/linkedtext.php
Line: 6
Vuln Code: include_once($classes_path.”visiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/yAxisLabelPos.php
Line: 6
Vuln Code: include_once($classes_path.”intenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/GroupBarPlot.php
Line: 8
Vuln Code: include_once($classes_path.”BarPlot.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/xAxisLabelPos.php
Line: 6
Vuln Code: include_once($classes_path.”intenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/multiplevalue.php
Line: 6
Vuln Code: include_once($classes_path.”basetype.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/squarepane.php
Line: 6
Vuln Code: include_once($classes_path.”container.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/Mail_RFC822.php
Line: 6
Vuln Code: include_once($classes_path.”string.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/mysqlconnector.php
Line: 6
Vuln Code: include_once($classes_path.”unslavedcomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/richtext.php
Line: 6
Vuln Code: include_once($classes_path.”string.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/tablemask.php
Line: 6
Vuln Code: include_once($classes_path.”string.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/hidden.php
Line: 6
Vuln Code: include_once($classes_path.”formelement.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/LinePlot.php
Line: 31
Vuln Code: include_once($classes_path.”Plot.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/textcollection.php
Line: 6
Vuln Code: include_once($classes_path.”collection.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/toolbar.php
Line: 6
Vuln Code: include_once($classes_path.”elgtktoolbar.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/mysqlquery.php
Line: 6
Vuln Code: include_once($classes_path.”mysqlconnector.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/zonesize.php
Line: 6
Vuln Code: include_once($classes_path.”string.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFsuborientation.php
Line: 6
Vuln Code: include_once($classes_path.”FPDForientation.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/listbox.php
Line: 6
Vuln Code: include_once($classes_path.”elgtklist.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/jpgraphsubobject.php
Line: 6
Vuln Code: include_once($classes_path.”jpgraphcomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/hiddencollection.php
Line: 6
Vuln Code: include_once($classes_path.”collection.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/branch.php
Line: 6
Vuln Code: include_once($classes_path.”multicontainer.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/naturalinteger.php
Line: 6
Vuln Code: include_once($classes_path.”integer.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/calendar.php
Line: 6
Vuln Code: include_once($classes_path.”dynapicalendar.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/itemslist.php
Line: 6
Vuln Code: include_once($classes_path.”multiplevalue.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/choicelist.php
Line: 6
Vuln Code: include_once($classes_path.”elgtkoptionmenu.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/container.php
Line: 6
Vuln Code: include_once($classes_path.”visiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/text.php
Line: 6
Vuln Code: include_once($classes_path.”visiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/imagecollection.php
Line: 6
Vuln Code: include_once($classes_path.”collection.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/tree.php
Line: 6
Vuln Code: include_once($classes_path.”branch.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFunit.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/edit.php
Line: 6
Vuln Code: include_once($classes_path.”elgtkentry.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/unslavedcomponent.php
Line: 6
Vuln Code: include_once($classes_path.”invisiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/GraphTabTitle.php
Line: 30
Vuln Code: include_once($classes_path.”jpgraphText.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/input.php
Line: 6
Vuln Code: include_once($classes_path.”formelement.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDF.php
Line: 6
Vuln Code: include_once($classes_path.”standalonecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/imagedisposition.php
Line: 6
Vuln Code: include_once($classes_path.”intenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/People.php
Line: 6
Vuln Code: include_once($classes_path.”visiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/TRBL.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/valign.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/textalign.php
Line: 6
Vuln Code: include_once($classes_path.”halign.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/invisiblecomponent.php
Line: 6
Vuln Code: include_once($classes_path.”component.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/fontfamily.php
Line: 6
Vuln Code: include_once($classes_path.”intenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/yAxis.php
Line: 6
Vuln Code: include_once($classes_path.”Axis.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/mysqlviewcallback.php
Line: 6
Vuln Code: include_once($classes_path.”mysqlview.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/boolean.php
Line: 6
Vuln Code: include_once($classes_path.”singlevalue.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFzoomtype.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/strenum.php
Line: 6
Vuln Code: include_once($classes_path.”string.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/combobox.php
Line: 6
Vuln Code: include_once($classes_path.”formelement.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/table.php
Line: 6
Vuln Code: include_once($classes_path.”multicontainer.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFfontfamily.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/jpgraphXscale.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/iconbutton.php
Line: 6
Vuln Code: include_once($classes_path.”button.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/htmlarea.php
Line: 6
Vuln Code: include_once($classes_path.”textarea.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/Mail_mimePart.php
Line: 6
Vuln Code: include_once($classes_path.”string.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/FPDFsubobjectcollection.php
Line: 6
Vuln Code: include_once($classes_path.”collection.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/xAxis.php
Line: 6
Vuln Code: include_once($classes_path.”Axis.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/formmethod.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/layerposition.php
Line: 6
Vuln Code: include_once($classes_path.”strenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/fileinput.php
Line: 6
Vuln Code: include_once($classes_path.”formelement.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/jpgraphcomponent.php
Line: 6
Vuln Code: include_once($classes_path.”invisiblecomponent.php”);

File: tmp/elegantk-1.0.0/elegantk/core/classes/jpgraphlinestyle.php
Line: 6
Vuln Code: include_once($classes_path.”intenum.php”);

File: tmp/elegantk-1.0.0/elegantk/core/help/help_baselist.php
Line: 21
Vuln Code:
include_once($classes_path.”baselist.php”);

File: tmp/elegantk-1.0.0/elegantk/core/help/help_collection.php
Line: 15
Vuln Code:
include_once($classes_path.”collection.php”);

(found with version 0.2 – 1057 projects processed so far)