Welcome people In World Defacers Team
[W]orld [D]efacers Team
==
Summary
eVuln ID: WD22
Vendor: CuteNews 1.3.*
Vendor's Web Site: http://cutephp.com/
Software: Live Customer Support Solution :- http://www.pansion
Hi,
[EMAIL PROTECTED] schrieb am Fri, 25 Aug 2006 19:14:46 +:
>Vendor: CuteNews 1.3.*
>
>-Description---
>
>
>$cutepath = __FILE__;
Here $cutepath is set to the path of this script
>$cutepath = preg_replace( "'\\\search\.php'", "", $cutepath);
>
>$cutepath = pr
[EMAIL PROTECTED] wrote:
-Description---
$cutepath = __FILE__;
$cutepath = preg_replace( "'\\\search\.php'", "", $cutepath);
$cutepath = preg_replace( "'/search\.php'", "", $cutepath);
require_once("$cutepath/inc/functions.inc.php");
--PoC/Exploi
