[Aria-Security] Stuffed Tracker Multiple Cross-Site Scripting VULN Oct 05 2007 10:05PM
Advisory Aria-Security Net, "[ NO REPLY ]" securityfocus com
Aria-Security Team

----------------------

Viart Shopping Cart Directory Transversal Vuln

Vendor:

http://www.viart.com/

POC:

function createCertFingerprint($filename) {

$fp = fopen($filename, "r");

http://target/path/payments/ideal_process.php

Credits Goes To Aria-Security Team

Thanks To Aura

Regards,

The-0utl4w

http://Aria-Security.Net [Aria-Security's Website]

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus