Exploit XRms 1.99.2 - Remote File Inclusion / Cross-Site Scripting / Information Gathering

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
6131
Проверка EDB
  1. Пройдено
Автор
AZZCODER
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2008-3400 cve-2008-3399 cve-2008-3398
Дата публикации
2008-07-25
Код:
##############################################################

XMRS Multiple Vulnerabilities (ZeroDay at 25-07-2008)
Author: AzzCoder [[email protected]]
Product: http://www.xrms.org/
Product Type: CRM
Thanks: coresecurity.com

Remote File Inclusion
	File: activities/workflow-activities.php
	Variable: $include_directory
	Required register_globals: Yes

XSS
	Multiple Files
	Variable: $msg
	Quote limitations: Yes

Information Gathering
	tests/info.php
	phpinfo() call

##############################################################

# milw0rm.com [2008-07-25]
 
Источник
www.exploit-db.com

Похожие темы