2 matches found
CVE-2006-2770
Directory traversal vulnerability in randompic.php in pppBLOG 0.3.8 and earlier, when registerglobals is enabled, allows remote attackers to read arbitrary files via a .. dot dot sequence in an index of the "file" array parameter, as demonstrated by file0...
pppBlog 0.3.8 - System Disclosure
pppBlog 0.3.8 - System Disclosure !/usr/bin/php -q -d shortopentag=on ? echo "pppBlog = 0.3.8 system disclosure exploit\r\n"; echo "by rgod [email protected]\r\n"; echo "site: http://retrogod.altervista.org\r\n\r\n"; echo "dork: intext:"Powered by pppblog"\r\n\r\n"; / works with:...