[VIM] wrapper.php for osCommerce?
str0ke
str0ke at milw0rm.com
Thu Jun 21 14:06:39 UTC 2007
Hey George,
<>
oscommerce 2ms2 info
http://forums.oscommerce.com/index.php?showtopic=31444&st=40
<>
I received this vulnerability back in 08/25/06, never posted it
because the author sent it in then stated not to post it around 15
minutes later.
wrapper.php?file=
/str0ke
On 6/20/07, George A. Theall <theall at tenablesecurity.com> wrote:
> Does anyone have information about the local file include flaw involving
> something SecurityFocus is calling "wrapper.php for osCommerce"
> (Bugtraq 24565)? The BID suggests the author's site is
> <http://www.europartsinc.com/>, but browsing around there I don't find
> anything.
>
> Interestingly, I did turn up a forum posting that suggests the
> vulnerability has been known for a while:
>
> http://www.mjturkiye.net/forum/index.php?showtopic=46190
>
> although my Turkish isn't as good as it used to be. :-)
>
> George
> --
> theall at tenablesecurity.com
>
More information about the VIM
mailing list