arfis

automated Remote File Inclusion search

RFI (0.2): WebspotBlogging September 14, 2007

Filed under: RFI — arfis @ 4:50 am

Project Name: WebspotBlogging
Project Link: http://sourceforge.net/projects/webspotblogging/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/webspotblogging/webspotblogging_3-01.zip
RFI Info:
File: tmp/webspotblogging_3-01/Upload/inc/logincheck.inc.php
Line: 28
Vuln Code: include($path.”inc/footer.inc.php”);

File: tmp/webspotblogging_3-01/Upload/inc/adminheader.inc.php
Line: 18
Vuln Code: include($path.”inc/global.php”);

File: tmp/webspotblogging_3-01/Upload/inc/mainheader.inc.php
Line: 18
Vuln Code: include($path.”inc/global.php”);

(found with version 0.2 – 3290 projects processed so far)