6 matches found
Directory traversal
Directory traversal vulnerability in plugins/ddb/foot.php in Strawberry 1.1.1 allows remote attackers to include and execute arbitrary local files via a .. dot dot in the file parameter to example/index.php. NOTE: this was originally reported as an issue affecting the do parameter, but traversal...
CVE-2009-1774
The CVE-2009-1774 entry describes a Directory Traversal in Strawberry 1.1.1 affecting the plugin path plugins/ddb/foot.php, exploitable via a …/ file parameter to example/index.php to include and execute local files. The issue is triggered by crafting a path with .. (dot dot); details note that t...
StrawBerry 1.1.1 Local File Inclusion
?php / StrawBerry 1.1.1 LFI / Remote Command Execution Exploit Site: http://strawberry.goodgirl.ru/ magicquotesgpc = Off Author: AVT Date : 10.05.09 My Site: http://antichat.ru/ / settimelimit0; errorreporting0; list$cli,$host,$path = $argv; if $argc != 3 print...
StrawBerry 1.1.1 LFI / Remote Command Execution Exploit
Exploit for unknown platform in category web applications ======================================================= StrawBerry 1.1.1 LFI / Remote Command Execution Exploit ======================================================= ?php / StrawBerry 1.1.1 LFI / Remote Command Execution Exploit Site:...
StrawBerry 1.1.1 - Local File Inclusion Remote Command Execution
StrawBerry 1.1.1 - Local File Inclusion Remote Command Execution ?php / StrawBerry 1.1.1 LFI / Remote Command Execution Exploit Site: http://strawberry.goodgirl.ru/ magicquotesgpc = Off Author: AVT Date : 10.05.09 My Site: http://antichat.ru/ / settimelimit0; errorreporting0; list$cli,$host,$path...
Strawberry 1.1.1 - html.php Remote Code Execution
Strawberry 1.1.1 - html.php Remote Code Execution source: https://www.securityfocus.com/bid/27160/info Strawberry is prone to a remote code-execution vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit will allow an attacker to compromise the...