|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 58
Members: 0
Total: 58
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
plz help me small problem with RFI |
|
Posted: Mon May 25, 2009 6:53 pm |
|
|
didon22 |
Regular user |
|
|
Joined: Sep 01, 2008 |
Posts: 6 |
|
|
|
|
|
|
|
thnx waraxe
i'll try to bypass admin panel because there s not a forum or a config files in the site
and i have no permissions to read config of other sites
thnx again for your help and take extra care |
|
Last edited by didon22 on Mon May 25, 2009 8:15 pm; edited 1 time in total |
|
|
|
Posted: Mon May 25, 2009 7:33 pm |
|
|
waraxe |
Site admin |
|
|
Joined: May 11, 2004 |
Posts: 2407 |
Location: Estonia, Tartu |
|
|
|
|
|
|
This is not RFI, you can read files but no inclusion here. So you have to take maximum from remote file disclosure. Try to read config files, mysql data files, etc. Also look @ the source of all other php scripts and search for additional security vulnerabilities. |
|
|
|
|
www.waraxe.us Forum Index -> Remote file inclusion
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|