BugTraq
gnopaste <= 0.5.3 (index.php) Remote File Include Vulnerability Jan 29 2007 04:24PM
trzindan hotmail fr (1 replies)
Re: gnopaste <= 0.5.3 (index.php) Remote File Include Vulnerability Jan 29 2007 10:48PM
Francesco Laurita (francesco francesco-laurita info)
trzindan (at) hotmail (dot) fr [email concealed] ha scritto:
> index.php
>
> include(GNP_REAL_PATH . 'includes/common.php');
>
>
Bogus!
First: GNP_REAL_PATH is a constant which means it has an unchangeable
value (RTM)
Second: GNP_REAL_PATH is setted on line #39 (Open your eyes)

Regards
--
Francesco Laurita

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus