arfis

automated Remote File Inclusion search

RFI (0.3): Streamline PHP Media Server September 14, 2007

Filed under: RFI — arfis @ 5:08 pm

Project Name: Streamline PHP Media Server
Project Link: http://sourceforge.net/projects/streamline/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/streamline/streamline-1.0-beta4.tar.gz
RFI Info:
File: tmp/streamline-1.0-beta4.ta/streamline-1.0-beta4/src/core/theme/includes/admin_footer.php
Line: 2
Vuln Code: require_once( $sl_theme_unix_path.”/admin/footer.php” );

File: tmp/streamline-1.0-beta4.ta/streamline-1.0-beta4/src/core/theme/includes/info_footer.php
Line: 2
Vuln Code: require_once( $sl_theme_unix_path.”/browse/info_footer.php” );

File: tmp/streamline-1.0-beta4.ta/streamline-1.0-beta4/src/core/theme/includes/theme_footer.php
Line: 2
Vuln Code: require_once( $sl_theme_unix_path.”/common/footer.php” );

File: tmp/streamline-1.0-beta4.ta/streamline-1.0-beta4/src/core/theme/includes/browse_footer.php
Line: 2
Vuln Code: require_once( $sl_theme_unix_path.”/browse/footer.php” );

File: tmp/streamline-1.0-beta4.ta/streamline-1.0-beta4/src/core/theme/includes/account_footer.php
Line: 2
Vuln Code: require_once( $sl_theme_unix_path.”/account/footer.php” );

File: tmp/streamline-1.0-beta4.ta/streamline-1.0-beta4/src/core/theme/includes/search_footer.php
Line: 2
Vuln Code: require_once( $sl_theme_unix_path.”/search/footer.php” );

(found with version 0.3 – 4005 projects processed so far)

Advertisements
 

RFI (0.3): pSlash

Filed under: RFI — arfis @ 4:42 pm

Project Name: pSlash
Project Link: http://sourceforge.net/projects/pslash/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/pslash/pslash-0.70.tar.gz
RFI Info:
File: tmp/pslash-0.70.ta/pslash-0.70/html/modules/visitors2/admin/view-archiver.inc.php
Line: 14
Vuln Code: include($lvc_admin_dir.’/archiver-export.inc.php’);

File: tmp/pslash-0.70.ta/pslash-0.70/html/modules/visitors2/include/config.inc.php
Line: 33
Vuln Code: include($lvc_include_dir.’lang/english.inc.php’);

File: tmp/pslash-0.70.ta/pslash-0.70/html/modules/visitors2/include/menus.inc.php
Line: 47
Vuln Code: include($lvc_include_dir.’/menus-‘.$view.’.inc.php’);

(found with version 0.3 – 3870 projects processed so far)

 

Version 0.3

Filed under: Development — arfis @ 4:37 pm

Now the script checks also for “defined(…) or die” wich also kill’s RFI’s. Another check: if the include or require is in a function, if so the RFI is useless. Version 0.3 is now running.

 

RFI (0.3): openEngine

Filed under: RFI — arfis @ 4:36 pm

Project Name: openEngine
Project Link: http://sourceforge.net/projects/openengine/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/openengine/openengine19_beta1.zip
RFI Info:
File: tmp/openengine19_beta1/openengine19/html/modules/extranet_profile/main.php
Line: 10
Vuln Code: include($this_module_path.”/profile_new.php”);

(found with version 0.3 – 3846 projects processed so far)

 

RFI (0.2): guanxiCRM Business Solution

Filed under: RFI — arfis @ 8:46 am

Project Name: guanxiCRM Business Solution
Project Link: http://sourceforge.net/projects/guanxicrm/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/guanxicrm/guanxicrm_0.9.1.tar.gz
RFI Info:
File: tmp/guanxicrm_0.9.1.ta/modules/webmail2/inc/rfc822.php
Line: 20
Vuln Code: require_once($webmail2_inc_dir.’pear.php’);

(found with version 0.2 – 3777 projects processed so far)

 

RFI (0.2): Online Fantasy Football League

Filed under: RFI — arfis @ 8:30 am

Project Name: Online Fantasy Football League
Project Link: http://sourceforge.net/projects/offl/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/offl/offl-0.2.6-patch.zip
RFI Info:
File: tmp/offl-0.2.6-patch/offl-0.2.6-patch/www/lib/classes/offl_nflteam.php
Line: 12
Vuln Code: require_once($DOC_ROOT . “/lib/classes/offl_dbobject.php”);

(found with version 0.2 – 3673 projects processed so far)

 

RFI (0.2): EZ-Ticket

Filed under: RFI — arfis @ 8:29 am

Project Name: EZ-Ticket
Project Link: http://sourceforge.net/projects/ezt/
Project DL: http://surfnet.dl.sourceforge.net/sourceforge/ezt/ezt-0.01.tar.gz
RFI Info:
File: tmp/ezt-0.01.ta/ezt/common.php
Line: 3
Vuln Code: include($ezt_root_path . ‘/functions/anti-hack.php’);

(found with version 0.2 – 3666 projects processed so far)