---

[Message Precedent sur la mailing][Message Suivant sur la mailing][Precedent dans le fil][Prochain dans le fil][Index par Date][Index par fil] Re: [Full-disclosure] LFI Bug and other

---

---

It sure as hell was not meant to be a place where children post links
to sites with live LFI issues.





On Sat, Feb 19, 2011 at 4:58 AM, Friedrich Hausberger
<fhausberger@xxxxxxxxx> wrote:
> Is full disclosure a security mailing list, where I can find hacking
> stuff or a magazine about
> chat show? I hate pornography also, but this is the wrong way to publish.


>
> Here you have a LFI vuln I found by accident:
>
> link://[click].


> Feel free to download the whole Debian 4.0 Distribution.


>
> Most provider do not use jails/chroot or similar for their multi hosted
> webserver. Nearly all providers are hackable under 3 days.


>
> Regards
>
> FHausberger
>
>>
>> Message: 17
>> Date: Sat, 19 Feb 2011 01:08:56 -0500
>> From: Hack Talk<hacktalkblog@xxxxxxxxx>
>> Subject: [Full-disclosure] University of Central Florida Multiple LFI
>> To: full-disclosure@xxxxxxxxxxxxxxxxx
>> Message-ID:
>>       <AANLkTi=oyDpNL6Jgu8Ms=btLaZdjUkvyhFxXLH8vDjj0@xxxxxxxxxxxxxx>
>> Content-Type: text/plain; charset="iso-8859-1"
>>
>> Found these and thought I'd share:
>>
>> -==================-
>> link://[click]
>> link://[click]
>> -==================-
>> Let me know if you do anything fun with 'em
>>
>> Luis Santana - Security+
>> Administrator - link://[click]
>> HackTalk Security - Security From The Underground
>> -------------- next part --------------
>> An HTML attachment was scrubbed...


>> URL: link://[click]
>>
>> ------------------------------
>>
>> Message: 18
>> Date: Sat, 19 Feb 2011 16:34:21 +0530
>> From: Madhur Ahuja<ahuja.madhur@xxxxxxxxx>
>> Subject: Re: [Full-disclosure] University of Central Florida Multiple
>>       LFI
>> To: Hack Talk<hacktalkblog@xxxxxxxxx>
>> Cc: full-disclosure@xxxxxxxxxxxxxxxxx
>> Message-ID:
>>       <AANLkTimd5F1Kgw1uCO_UGgX3mVUiMuU9jaisp6K=SM-K@xxxxxxxxxxxxxx>
>> Content-Type: text/plain; charset="utf-8"
>>
>> link://[click]
>>
>> On Sat, Feb 19, 2011 at 11:38 AM, Hack Talk<hacktalkblog@xxxxxxxxx>  wrote:
>>
>>> Found these and thought I'd share:
>>>
>>> -==================-
>>>
>>> link://[click]
>>>
>>> link://[click]
>>> -==================-
>>> Let me know if you do anything fun with 'em
>>>
>>> Luis Santana - Security+
>>> Administrator - link://[click]
>>> HackTalk Security - Security From The Underground
>>>
>>>
>>> 
>>> Full-Disclosure - We believe in it.


>>> Charter: link://[click]
>>> Hosted and sponsored by Secunia - link://[click]
>>>
>> -------------- next part --------------
>> An HTML attachment was scrubbed...


>> URL: link://[click]
>>
>> ------------------------------
>>
>> 
>> Full-Disclosure - We believe in it.


>> Charter: link://[click]
>> Hosted and sponsored by Secunia - link://[click]
>>
>> End of Full-Disclosure Digest, Vol 72, Issue 44
>> ***********************************************
>
> 
> Full-Disclosure - We believe in it.


> Charter: link://[click]
> Hosted and sponsored by Secunia - link://[click]
>


Full-Disclosure - We believe in it.


Charter: link://[click]
Hosted and sponsored by Secunia - link://[click]

---

• References:
  • [Full-disclosure] LFI Bug and other

• Precedent par Date: Re: [Full-disclosure] (a present for andrew wallace, with love from cal)â
• Suivant par Date: Re: [Full-disclosure] (a present for andrew wallace, with love from cal)â
• Precedent par fil : [Full-disclosure] LFI Bug and other
• Suivant par fil : Re: [Full-disclosure] LFI Bug and other
• Index(s):
  • Date
  • Fil

---

Archives de la liste de diffusion Secunia
Archives de la liste de diffusion Full Disclosure