[VIM] wrapper.php for osCommerce?

str0ke str0ke at milw0rm.com
Thu Jun 21 14:06:39 UTC 2007


Hey George,

<>
oscommerce 2ms2 info
http://forums.oscommerce.com/index.php?showtopic=31444&st=40
<>

I received this vulnerability back in 08/25/06, never posted it
because the author sent it in then stated not to post it around 15
minutes later.

wrapper.php?file=

/str0ke

On 6/20/07, George A. Theall <theall at tenablesecurity.com> wrote:
> Does anyone have information about the local file include flaw involving
>   something SecurityFocus is calling "wrapper.php for osCommerce"
> (Bugtraq 24565)? The BID suggests the author's site is
> <http://www.europartsinc.com/>, but browsing around there I don't find
> anything.
>
> Interestingly, I did turn up a forum posting that suggests the
> vulnerability has been known for a while:
>
>    http://www.mjturkiye.net/forum/index.php?showtopic=46190
>
> although my Turkish isn't as good as it used to be. :-)
>
> George
> --
> theall at tenablesecurity.com
>


More information about the VIM mailing list