- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 2115
- Проверка EDB
-
- Пройдено
- Автор
- BEFORD
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2006-4011
- Дата публикации
- 2006-08-02
Код:
Script: Kayako eSupport <= 2.3.1
Vendor: Kayako (www.kayako.com)
Discovered: beford <xbefordx gmail com>
Comments: It seems like the vendor silently fixed the issue in the
current version (more like since v2.3.5) withouth warning users of
previous versions, noobs. Requires that "register_globals" is enabled.
Vulnerable File: esupport/admin/autoclose.php
[code]
require_once $subd . "functions.php";Not-leet-enough: "Powered By Kayako eSupport"
Для просмотра ссылки Войди
POC: Для просмотра ссылки Войди
# milw0rm.com [2006-08-02][/CODE]
- Источник
- www.exploit-db.com
