On Thu, Jul 24, 2003 at 03:30:43PM -0500, nokio x0 wrote:
> Heh, I every site that i've come across running the e107 portal seems to ask
> for admin login before you could use this exploit...Are you sure all
> versions are vulnerable? Doesn't even work on my own system without asking
> for login.
See: http://e107.org/news.php
If you post the dump_sql variable with method POST, it'll work.
> Heh, I every site that i've come across running the e107 portal seems to ask
> for admin login before you could use this exploit...Are you sure all
> versions are vulnerable? Doesn't even work on my own system without asking
> for login.
See: http://e107.org/news.php
If you post the dump_sql variable with method POST, it'll work.
Regards,
---
Tjebbe...
------------------------------------------------------------------------
-------
Tjebbe de Winter | Cysonet Managed Hosting | tjebbe @ cysonet.com
tel. +31 20 4703339 | Managing the buzzwords. | http://cyso.nl
------------------------------------------------------------------------
-------
[ reply ]