 |
|
 |
 |
Menu |
 |
|
 Home |
| |
|
 Discussions |
| |
|
 Tools |
| |
|
| Affiliates |
| |
|
 Content |
| |
|
 Info |
| | |
|
|
|
|
|
User Info |
|
 Membership:
 Latest: MichaelSnaRe
 New Today: 0
 New Yesterday: 0
 Overall: 9144
 People Online:
 Visitors: 213
 Members: 0
 Total: 213
|
|
|
|
|
|
Full disclosure |
|
|
|
 |
|
 |
 |
|
 |
IT Security and Insecurity Portal |
|
|
|
Sending POST requests... I found 2 rather odd results.
1.
Not Acceptable
An appropriate representation of the requested resource /admin.php could not be found on this server.
2.
Invalid Conten ... |
|
|
|
|
Theoretically that should work for all of the redirect bugs , not just pages redirecting to Your Account, correct?
I'm gonna put it into my test page and give it a shot , thanks m8 |
|
|
|
|
I'd say this is a low risk.
Anyways. First the link in question:
modules.php?name=Your_Account&redirect=>
if ( !$userdata['session_logged_in'] && $mode == ... |
|
|
|
|
I am fairly sure that I have a vulnerability found.
But i'd like to ask if posting it here (its incomplete) would be bad.
I'm unable to figure out completely what its capable of. And I don't want ... |
|
|
|
|
| Lol ! Priceless, truely priceless |
|
|
|
|
Thanks for the welcome 
I'd like to say yes I've seen the same thing, a friend of mine used 4 phpNuke anti-hack scripts, and had taken advantage of renaming the Admin.php file, he got hacked and ... |
|
|
|
|
| Firstly, I'd like to thank WarAxe for providing us with this website where himself and many others have provided information that I've personally used to fix many holes I had no idea existed in PhpNuk ... |
|
|
| Page 1 of 1 |
All times are GMT |
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|
