4 matches found
GUESTEX guestbook code execution
Another hole found while mass auditing free cgi scripts. After finding it and writing code for it I noticed there is already a a BID http://www.securityfocus.com/archive/1/425970, but no code. So, here is some code. Maybe this will further provoke the author to get it fixed. --K-sPecial...
Guestex Guestbook 1.00 (email) Remote Code Execution Exploit
No description provided by source. Creator: K-sPecial xzziroz.net of .aware awarenetwork.org Name: GUESTEX-exec.pl Date: 06/07/2006 Version: 1.00 1.00 06/07/2006 - GUESTEX-exec.pl created Description: GUESTEX guestbook is vulnerable to remote code execution in how it handles it's 'email' paramete...
Guestex Guestbook 1.00 - email Remote Code Execution
Guestex Guestbook 1.00 - email Remote Code Execution Creator: K-sPecial xzziroz.net of .aware awarenetwork.org Name: GUESTEX-exec.pl Date: 06/07/2006 Version: 1.00 1.00 06/07/2006 - GUESTEX-exec.pl created Description: GUESTEX guestbook is vulnerable to remote code execution in how it handles it'...
Guestex Guestbook 1.00 - 'email' Remote Code Execution
Creator: K-sPecial xzziroz.net of .aware awarenetwork.org Name: GUESTEX-exec.pl Date: 06/07/2006 Version: 1.00 1.00 06/07/2006 - GUESTEX-exec.pl created Description: GUESTEX guestbook is vulnerable to remote code execution in how it handles it's 'email' parameter. $form'email' is used when openni...