Bugtraq mailing list archives
nabopoll 1.1.2 sensitive file (admin without password)
From: sn0oPy.team () gmail com
Date: 10 Feb 2007 01:17:44 -0000
* nabopoll 1.1.2 sensitive file (admin without password) * By : sn0oPy * Risk : high * site : http://nabocorp.com/ * Dork : inurl:"nabopoll/" * exploit : acces without password to : http://target/nabopoll/admin/config_edit.php http://target/nabopoll/admin/template_edit.php http://target/nabopoll/admin/survey_edit.php * contact : sn0oPy () avenir-geopolitique net * greetz : [subzero], Avg Team(forums.avenir-geopolitique.net). http://forums.avenir-geopolitique.net/viewtopic.php?t=2643
Current thread:
- nabopoll 1.1.2 sensitive file (admin without password) sn0oPy . team (Feb 10)