lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: 14 May 2007 21:10:13 -0000 From: spriteversus@...mail.com To: bugtraq@...urityfocus.com Subject: ImI image file inclusion in script upload # w2box: web 2.0 File Repository (Upload) # Script Code Source http://labs.beffa.org/w2box/ # Dork : "powered by w2box" # Discovered by 4ur3v0ir #Homepage Four: http://www.security-frog.org http://www.c-group.org http://hslteam.org # Greetz To:NINF,frat2005,komtec1,kakalake,_AntraX_,fr34k And Staff .......................................................................................................... Exploit: http://wwww.homepage.com/w2box/ Upload a file with the extension .php.jpg to obtain shell in the system http://www.homepage.com/w2box/data/file.php.jpg ...........................................................................................................
Powered by blists - more mailing lists