w0rm |
Active user |

 |
|
Joined: Feb 22, 2008 |
Posts: 49 |
|
|
|
 |
 |
 |
|
Hi , i ask , there is an exploit here ?
Code: | File : \script\auther.php
Line : 10
Code : require_once($_SERVER['DOCUMENT_ROOT']:/classes/Auh/SysAuth.php'=; |
in this source ?
Code: | <?php
define('AUTH_IDLED', -1);
define('AUTH_EXPIRED', -2);
define('AUTH_WRONG_LOGIN', -3);
define('AUTH_METHOD_NOT_SUPPORTED', -4);
define('AUTH_SECURITY_BREACH', -5);
include_once $_SERVER['DOCUMENT_ROOT'].'/classes/Load.php';
require_once($_SERVER['DOCUMENT_ROOT'].'/classes/Auth/SysAuth.php');
if(!class_exists('Auth'))
{
class Auth //------ Mounir 04/01/2005
{
var $expire = 0;
var $expired = false;
var $idle = 1200;
var $idled = true;
var $storage = '';
var $loginFunction = '';
var $showLogin = true;
var $allowLogin = true;
var $status = '';
var $client = '';
var $username = '';
var $password = '';
var $SSL = false;
var $loginCallback = '';
var $loginFailedCallback = '';
var $logoutCallback = '';
var $privilegeCallback='/classes/Auth/Frontend/Privilege.php';
var $_sessionName = '_authsession';
var $version = "@version@";
var $advancedsecurity = false;
var $_postClient = 'CONNECTIONID';
var $_postUsername = 'username';
var $_postPassword = 'password';
var $_postSSL = 'SSL';
var $Id='';
var $UnitBusiness;
var $session;
var $server;
var $post;
var $cookie;
var $authdata;
var $authChecks = 0;
var $Privileges=array();
var $Roles=array();
var $Team=array();
var $RolesUnitBusiness=array();
var $UserInfo;
var $AuthJournal;
var $UnitPrivileges = array(); // UnitPrivilege[Privilege][level][array(businesunit}] || true,false dans le cas du level 8]
var $Security;
//--------------------
function Auth($storageDriver='Mysql', $options = '', $loginFunction = '', $showLogin = true)
{
if(isset($_COOKIE['_session_id']) && $_COOKIE['_session_id']!="")
{
session_id($_COOKIE['_session_id']);
session_start();
}
else
@session_start();
if( !isset($_SESSION[$this->_sessionName]) && !isset($GLOBALS['HTTP_SESSION_VARS'][$this->_sessionName]) )
{
session_register($this->_sessionName);
}
isset($_SESSION) ? $this->session =& $_SESSION[$this->_sessionName] : $this->session =& $GLOBALS['HTTP_SESSION_VARS'][$this->_sessionName] ;
isset($_SERVER) ? $this->server =& $_SERVER : $this->server =& $GLOBALS['HTTP_SERVER_VARS'];
isset($_POST) ? $this->post =& $_POST : $this->post =& $GLOBALS['HTTP_POST_VARS'];
isset($_COOKIE) ? $this->cookie =& $_COOKIE : $this->cookie =& $GLOBALS['HTTP_COOKIE_VARS'];
if ($loginFunction != '' && is_callable($loginFunction))
{
$this->loginFunction = $loginFunction;
}
if (is_bool($showLogin))
{
$this->showLogin = $showLogin;
}
$this->start($storageDriver);
$this->Id=$_SESSION['Id'];
unset($_SESSION['Id']);
$this->storage=''; |
|
|