Exploit

EDB-ID: 31499	Author: ZoRLu	Published: 2008-03-24
CVE: CVE-2008-6543	Type: Webapps	Platform: PHP
Aliases: N/A	Advisory/Source: Link	Tags: N/A
E-DB Verified:	Exploit: Download / View Raw	Vulnerable App: N/A

« Previous Exploit Next Exploit »

source: http://www.securityfocus.com/bid/28417/info
                    
Quick Classifieds is prone to multiple remote file-include vulnerabilities because it fails to sufficiently sanitize user-supplied data.
                    
Exploiting these issues may allow an attacker to compromise the application and the underlying system; other attacks are also possible.
                    
Quick Classifieds 1.0 is vulnerable; other versions may also be affected. 

http://www.example.com/QuickSystems_path/controlpannel/createFeatured.php3?DOCUMENT_ROOT=ZoRLu.txt?

Related Exploits

Trying to match CVEs (1): CVE-2008-6543
Trying to match OSVDBs (1): 53043
Other Possible E-DB Search Terms: Quick Classifieds 1.0, Quick Classifieds

Date	Title	Author
2008-03-24	Quick Classifieds 1.0 - 'controlpannel/alterNews.php3' DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - 'controlpannel/createNews.php3' DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - Classifieds/index.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - Classifieds/view.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlcenter/index.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlcenter/manager.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlcenter/pass.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlcenter/remember.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlcenter/sign-up.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlcenter/update.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlcenter/userSet.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlcenter/verify.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/alterCats.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/alterFeatured.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/alterHomepage.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/alterTheme.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/color_help.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/createdb.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/createHomepage.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/createL.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/createM.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/createP.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/createS.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/createT.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu
2008-03-24	Quick Classifieds 1.0 - controlpannel/index.php3 DOCUMENT_ROOT Parameter Remote File Inclusion	ZoRLu

Quick Classifieds 1.0 - controlpannel/createFeatured.php3 DOCUMENT_ROOT Parameter Remote File Inclusion

Related Exploits