|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
PHPNuke viewpage.php allows Remote File retrieving
From: Zero_X www.lobnan.de Team (zero-x
linuxmail.org)
Date: Tue Mar 25 2003 - 10:32:07 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
viewpage.php is a part of PHPNuke.
The Script allows an attacker to view all files on the System.
Example:
http://server.com/viewpage.php?file=/etc/passwd
Zero X member of www.Lobnan.de
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]