[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] PHP file vulnerable on SMF 1.1.10

To: bro <tweetycoaster@xxxxxxxxx>
Subject: Re: [Full-disclosure] PHP file vulnerable on SMF 1.1.10
From: » Ruben Alves <rubenalves@xxxxxxxx>
Date: Wed, 23 Sep 2009 10:46:23 +0100

It's not a bug, it's seems to be a feature. Take a look closer, the 
files are fisically there.
I think a simple unix command can solve that security issue:
rm -fr *.php~

Best regards,

bro wrote:
> In Simple Machine Forum application version 1.1.10,
> everybody can see some PHP files as like as index.php by any browsers
> just added "~" symbol to end of filename.
> examples:
> http://vulnsite.com/path_of_SMF/index.php~
> http://vulnsite.com/path_of_SMF/ssi_examples.php~
> http://vulnsite.com/path_of_SMF/SSI.php~
>
>
>   

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] PHP file vulnerable on SMF 1.1.10
  - From: bro

Prev by Date: [Full-disclosure] nginx - low risk webdav destination bug
Next by Date: Re: [Full-disclosure] PHP file vulnerable on SMF 1.1.10
Previous by thread: Re: [Full-disclosure] PHP file vulnerable on SMF 1.1.10
Next by thread: Re: [Full-disclosure] PHP file vulnerable on SMF 1.1.10
Index(es):
- Date
- Thread