<<< Date Index >>> <<< Thread Index >>>

Re: SubberZ[Lite] - Remote File Include

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: SubberZ[Lite] - Remote File Include
From: the.jalal@xxxxxxxxx
Date: 17 Jul 2006 20:38:51 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

this exploit won't work. the myadmindir variable is set before any GET 
variables are processed. sanitation is performed in the previous file.

Prev by Date: Re: XSS phpBB 2.0.21 in administration
Next by Date: New CVE identifiers for separate PowerPoint 0-day issues assigned
Previous by thread: SubberZ[Lite] - Remote File Include
Next by thread: VBZooM <=V1.11 "sub-join.php" SQL Injection
Index(es):
- Date
- Thread