| To: | bugtraq@securityfocus.com |
|---|---|
| Subject: | Re: phpMyChat-0.14.5 |
| From: | stuart_smith@gmail.remove.com |
| Date: | 16 Apr 2007 00:58:59 -0000 |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | bugtraq-list@securepoint.com |
| Delivered-to: | mailing list bugtraq@securityfocus.com |
| Delivered-to: | moderator for bugtraq@securityfocus.com |
| List-help: | <mailto:bugtraq-help@securityfocus.com> |
| List-id: | <bugtraq.list-id.securityfocus.com> |
| List-post: | <mailto:bugtraq@securityfocus.com> |
| List-subscribe: | <mailto:bugtraq-subscribe@securityfocus.com> |
| List-unsubscribe: | <mailto:bugtraq-unsubscribe@securityfocus.com> |
| Mailing-list: | contact bugtraq-help@securityfocus.com; run by ezmlm |
You appear to have reported 4 non existent issues in a row, in this case the variable you are trying to exploit is defined at the very top of the script. It's the same with the Maian scripts you are reporting. They clearly have the following at the top of the script. $path_to_folder = dirname(__FILE__).'/'; I suggest your time would be better spent actually learning the language before you attempt to report any sort of security exploits. |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | LS simple guestbook - arbitrary code execution, jd2k2000 |
|---|---|
| Next by Date: | ActionPoll Script (actionpoll.php) Remote File Include // starhack.org, seko |
| Previous by Thread: | phpMyChat-0.14.5, k4rtal |
| Next by Thread: | LS simple guestbook - arbitrary code execution, jd2k2000 |
| Indexes: | [Date] [Thread] [Top] [All Lists] |