Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:13179
HistoryJun 15, 2006 - 12:00 a.m.

G Shout 1.3.1 Version - Remote File Include Vulnerability

2006-06-1500:00:00
vulners.com
2

SaVSaK.CoM | SpC-x - The_BeKiR |

G Shout 1.3.1 Version - Remote File Include Vulnerability

Risk : High

Class: Remote

Script : G Shout

Credits : SpC-x

Thanks : The_BeKiR - Ejder - FasTBoY - ERNE - RMx

Code :

include("config.php");

include("./includes/functions.inc.php");

include ("./languages/lang-".$language.".php");

Vulnerable :

http://www.victim.com/G Shout/shoutbox.php?language=Command-Shell