<<< Date Index >>> <<< Thread Index >>>

TinyPHP forum <= 3.6 Remote Command Execution Exploit

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: TinyPHP forum <= 3.6 Remote Command Execution Exploit
From: hessamx@xxxxxxxxxxx
Date: 6 Jun 2006 07:20:15 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

~ TinyPHP forum v 3.6
# Local File Inclusion in "Profile.php"
# Coded By Hessam-x www.hessamx.net
~ Exploit:
http://www.milw0rm.com/exploits/1857

Prev by Date: BloggIT <= 1.01 (admin.php) Arbitrary code execution
Next by Date: bug on showwich.asp
Previous by thread: BloggIT <= 1.01 (admin.php) Arbitrary code execution
Next by thread: bug on showwich.asp
Index(es):
- Date
- Thread