BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
Re: Mambo Component - EstateAgent Remote File Inclusion
Aug 23 2006 10:51PM
Carsten Eilers (ceilers-lists gmx de)
Hi,
Outlaw (at) aria-security (dot) net [email concealed] schrieb am Sun, 20 Aug 2006 02:02:16 +0000:
Ay you wrote yourself:
># Don't allow direct linking
>
> defined( '_VALID_MOS' ) or die( 'Direct Access to this location is not
>allowed.' );
This kills the script I you try a direct access, so there
is no manipulation of ...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
Outlaw (at) aria-security (dot) net [email concealed] schrieb am Sun, 20 Aug 2006 02:02:16 +0000:
Ay you wrote yourself:
># Don't allow direct linking
>
> defined( '_VALID_MOS' ) or die( 'Direct Access to this location is not
>allowed.' );
This kills the script I you try a direct access, so there
is no manipulation of ...
[ more ]