WEBInsta MM <= 1.3e (absolute_path) Remote File Include Exploit

No description provided by source. !-- vulnerable code: /maillist/inc/initdb.php ----------------------------------------------------------------------- ifisset$GET'absolutepath' echo no access from here !!; exit; include$absolutepath.'inc/adodbt/db.inc';...

WEBInsta Mailing List Manager InitDB.PHP远程文件包含漏洞

WEBinsta Mailing List Manager是一款基于PHP的邮件列表程序。 WEBinsta Mailing List Manager不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞以WEB进程权限执行任意命令。 问题是'InitDB.PHP'脚本对用户提交的'absolutepath'参数缺少过滤，提交恶意的远程服务器作为包含对象，可导致以WEB进程权限执行任意PHP代码。 WEBInsta WEBInsta Mailing Manager 1.3 d WEBInsta WEBinsta Mailing List Manager 1.3.e...

WEBInsta MM &lt;= 1.3e (absolute_path) Remote File Include Exploit

No description provided by source. !-- vulnerable code: /maillist/inc/initdb.php ----------------------------------------------------------------------- ifisset$GET'absolutepath' echo "no access from here !!"; exit; include$absolutepath.'inc/adodbt/db.inc';...

WEBInsta MM 1.3e - &#039;absolute_path&#039; Remote File Inclusion

WEBInsta Mailing List Manager = 1.3e initdb.php Remote File Include Exploit function milw0rm if document.exploit.target.value=="" alert"Enter a Target"; return false; exploit.action= document.exploit.target.value; exploit.cmd.value=document.exploit.cmd.value;...

WEBInsta MM 1.3e - absolute_path Remote File Inclusion

WEBInsta MM 1.3e - absolutepath Remote File Inclusion WEBInsta Mailing List Manager = 1.3e initdb.php Remote File Include Exploit function milw0rm if document.exploit.target.value=="" alert"Enter a Target"; return false; exploit.action= document.exploit.target.value;...

CVE-2005-0748

Technical details about CVE-2005-0748 are not publicly available in the provided documents. Monitor for updates.