|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Aria-Security] Stuffed Tracker Multiple Cross-Site Scripting VULN
From: Advisory
Aria-Security.Net, (AdvisoryAria-Security.Net)
Date: Fri Oct 05 2007 - 17:05:29 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Aria-Security Team
----------------------
Viart Shopping Cart Directory Transversal Vuln
Vendor:
http://www.viart.com/
POC:
function createCertFingerprint($filename) {
$fp = fopen($filename, "r");
http://target/path/payments/ideal_process.php
Credits Goes To Aria-Security Team
Thanks To Aura
Regards,
The-0utl4w
http://Aria-Security.Net [Aria-Security's Website]
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]