Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include

Subject: Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
Date: Mon, 29 Jan 2007 13:00:15 -0600 (CST)
From: Gadi Evron <suppressed>

How can we all automate the testing process for fake vulns in and list
them as such without overburdening OSVDB, CVE, Milworm and SecuriTeam?

On Sun, 28 Jan 2007, Stefano Zanero wrote:

> suppressed wrote:
> 
> > local Calendar System v1.1 (lcStdLib.inc) Remote File Include
> 
> Fake vuln
> 
> > code :
> 
> The variables are set in config.php
> 
> > exploit:
> 
> You never tested them. Which is pretty lame.
> 
> Stefano
>

Follow-Ups:
- Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
  - From: Stefano Zanero
- Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
  - From: Simple Nomad

References:
- Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
  - From: Stefano Zanero

Prev by Date: Re: Fake: Open Conference Systems = 2.8.2 Remote File Inclusion
Next by Date: Arbitrary Code Execution in SQL-Ledger and LedgerSMB through redirects
Previous by thread: Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
Next by thread: Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
Index(es):
- Date
- Thread

Mail converted by mhonarc 2.6.15
This archive provided courtesy of JSW4.NET, Internet Hosting Services for Small Business.