arfis

automated Remote File Inclusion search

RFI (0.2): ReMaSys September 14, 2007

Filed under: RFI — arfis @ 2:41 am

Project Name: ReMaSys
Project Link: http://sourceforge.net/projects/remasys/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/remasys/remasys_appli_v0.5.zip
RFI Info:
File: tmp/remasys_appli_v0.5/website/global.php
Line: 8
Vuln Code: require_once ($DIR_ROOT . ‘conf/constants.php’);

File: tmp/remasys_appli_v0.5/website/template/fr/page.php
Line: 26
Vuln Code: include($DIR_PAGE . “$lang/boxAdmin.php”);

File: tmp/remasys_appli_v0.5/website/page/fr/boxConnection.php
Line: 16
Vuln Code: include($DIR_PAGE . “$lang/boxConnected.php”);

(found with version 0.2 – 2410 projects processed so far)