|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[Full-disclosure] LFI In Multi Profit Websites
From: rockey killer (skg102
gmail.com)
Date: Fri Apr 09 2010 - 09:21:26 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Local File Inclusion (LFI) in Multi Profit Websites
Multi Profit Websites is a commercial script that is running on multiple
domains and they claims that this script earns money for the owner.
Vulnerability
Local File Inclusion Via URL which can be reproduced by
domain/page.php?id=../../../../../../etc/passwd
Reported : 1st april 2009
Fixed : ----------------------
Credits,
H4CK3R Crew
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]