[VIM] false: Openads-2.3.31-alpha-pr2 (lib-ftp.inc.php) Remot File Include
str0ke
str0ke at milw0rm.com
Wed Feb 21 10:46:34 EST 2007
fopen is inside of a function that is never called in the script.
/str0ke
######################################################
#
#
Openads-2.3.31-alpha-pr2
#
# Class: File Include Vulnerability
# Published 2007-02-21
# Remote: Yes
# Critical Level : Dangerous
# Site: http://www.openads.org/downloads/download-openads-2.3.html
######################################################
file's ;
lib-ftp.inc.php
======================================================
Vuln Code
@fopen($localfile, "w");
=======================================================
Exploit :
Http:// www.Victem.com / [Openads-2.3.31-alpha-pr2]
/max-v0.3.31-alpha-pr2/www/admin/lib-ftp.inc.php?ilocalfile=shellcode
More information about the VIM
mailing list