|
|
Re: e107 website system Vulnerability: msg#00379security.bugtraq
On Thu, Jul 24, 2003 at 03:30:43PM -0500, nokio x0 wrote: > Heh, I every site that i've come across running the e107 portal seems to ask > for admin login before you could use this exploit...Are you sure all > versions are vulnerable? Doesn't even work on my own system without asking > for login. See: http://e107.org/news.php If you post the dump_sql variable with method POST, it'll work. Regards, --- Tjebbe... ------------------------------------------------------------------------------- Tjebbe de Winter | Cysonet Managed Hosting | tjebbe @ cysonet.com tel. +31 20 4703339 | Managing the buzzwords. | http://cyso.nl ------------------------------------------------------------------------------- |
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| Previous by Date: | PBLang Forum XSS Vul: 00379, Quan Van Truong Bui |
|---|---|
| Next by Date: | MS03-029 / Q823803 breaks RAS?: 00379, Adam D. Barratt |
| Previous by Thread: | Re: e107 website system Vulnerabilityi: 00379, nokio x0 |
| Next by Thread: | Re: e107 website system Vulnerability: 00379, Steve Dunstan |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
| News | FAQ | advertise |