FileExecutive File Disclosure / Path Disclosure / Shell Upload

2010-02-26T00:00:00
ID PACKETSTORM:86733
Type packetstorm
Reporter ViRuSMaN
Modified 2010-02-26T00:00:00

Description

                                        
                                            `  
  
==============================================================================  
[»] Thx To : [ Jiko ,H.Scorpion ,Dr.Bahy ,T3rr0rist ,Golden-z3r0 ,Shr7 Team . ]  
==============================================================================  
[»] FileExecutive Multiple Vulnerabilities  
==============================================================================  
  
[»] Script: [ FileExecutive v1.0.0 ]  
[»] Language: [ PHP ]  
[»] Site page: [ FileExecutive is a web-based file manager written in PHP. ]  
[»] Download: [ http://sourceforge.net/projects/fileexecutive/ ]  
[»] Founder: [ ViRuSMaN <v.-m@live.com - totti_55_3@yahoo.com> ]  
[»] Greetz to: [ HackTeach Team , Egyptian Hackers , All My Friends & Islam-Defenders.Org ]  
[»] My Home: [ HackTeach.Org , Islam-Attack.Com ]  
  
###########################################################################  
  
===[ Exploits ]===  
  
[»] http://im2up.com/r0x/1.txt ->The Exploit Code <-=- Remote Add Admin Exploit  
[»] http://im2up.com/r0x/1.txt ->The Exploit Code <-=- Remote Edit Admin Exploit  
[»] By Go To The End Of Page & Browse Your Shell 2 upload it <-=- Remote File Upload Vulnerability  
[»] http://localhost/[path]/download.php?file=./LFD <-=- Local File Disclosure Vulnerability  
[»] http://localhost/[path]/listdir.php?dir=./FPD <-=- Full Path Disclosure Vulnerability  
  
Author: ViRuSMaN <-  
  
###########################################################################  
________________________________  
Hotmail: Powerful Free email with security by Microsoft. Get it now.<https://signup.live.com/signup.aspx?id=60969>  
  
  
  
`