Re: Re: discloser 0.0.4 Remote File Inclusion (with Exploit)

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: Re: discloser 0.0.4 Remote File Inclusion (with Exploit)
From: dr.t3rr0r1st@xxxxxxxxx
Date: 17 Aug 2006 21:14:13 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

ok , here we go 

foreach ($avail_types as $type) {
include($type . ".plugin.php");

here's the source 
so what's the problem ? your source is correct but the source that i found the 
vuln. in it , shows that there is a Remote File Inclusion Vulnerabilite in your 
script

Regards 
T3rr0rist

Follow-Ups:
- Re: discloser 0.0.4 Remote File Inclusion (with Exploit)
  - From: Carsten Eilers

Prev by Date: Re: Concurrency-related vulnerabilities in browsers - expect problems
Next by Date: Re: JavaScript Lazy Authorization Forcer and Visited Link Scaner
Previous by thread: Re: discloser 0.0.4 Remote File Inclusion (with Exploit)
Next by thread: Re: discloser 0.0.4 Remote File Inclusion (with Exploit)
Index(es):
- Date
- Thread