[VIM] wrapper.php for osCommerce?

str0ke str0ke at milw0rm.com
Thu Jun 21 14:07:40 UTC 2007


Oh and the original author wasn't turkish.

/str0ke

On 6/21/07, str0ke <str0ke at milw0rm.com> wrote:
> Hey George,
>
> <>
> oscommerce 2ms2 info
> http://forums.oscommerce.com/index.php?showtopic=31444&st=40
> <>
>
> I received this vulnerability back in 08/25/06, never posted it
> because the author sent it in then stated not to post it around 15
> minutes later.
>
> wrapper.php?file=
>
> /str0ke
>
> On 6/20/07, George A. Theall <theall at tenablesecurity.com> wrote:
> > Does anyone have information about the local file include flaw involving
> >   something SecurityFocus is calling "wrapper.php for osCommerce"
> > (Bugtraq 24565)? The BID suggests the author's site is
> > <http://www.europartsinc.com/>, but browsing around there I don't find
> > anything.
> >
> > Interestingly, I did turn up a forum posting that suggests the
> > vulnerability has been known for a while:
> >
> >    http://www.mjturkiye.net/forum/index.php?showtopic=46190
> >
> > although my Turkish isn't as good as it used to be. :-)
> >
> > George
> > --
> > theall at tenablesecurity.com
> >
>


More information about the VIM mailing list