Hot Links download backup authorized vulnerabilities

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: Hot Links download backup authorized vulnerabilities
From: hack2prison@xxxxxxxxx
Date: 15 Nov 2006 05:26:06 -0000

Hot Links is web directory system provided by mrcgiguy.com contain PHP+MySQL version and Perl version and PHP withou MySQL. All version are vulnerabilities

If admin backup database will store on server and attacker can download without authorized:
http://[domain.ext]/[path]/dlback.php?dl=fullback

Contact vendor but no reply.

Prev by Date: discloser => 0.0.4 Remote File Include Vulnerabilities
Next by Date: PhpMyAdmin all version [multiples vulnerability]
Previous by thread: discloser => 0.0.4 Remote File Include Vulnerabilities
Next by thread: PhpMyAdmin all version [multiples vulnerability]
Index(es):
- Date
- Thread

[Index of Archives] [Linux Security] [Netfilter] [PHP] [Yosemite News] [Linux Kernel]

Powered by Linux