[40183] in bugtraq
Re: CMS Made Simple <= 0.10 - PHP injection
daemon@ATHENA.MIT.EDU (garaged)
Tue Sep 6 19:27:36 2005
Message-ID: <67b677ce0509051502717a12e@mail.gmail.com>
Date: Mon, 5 Sep 2005 17:02:53 -0500
From: garaged <garaged@gmail.com>
Reply-To: garaged@gmail.com
To: "groszynskif@gmail.com" <groszynskif@gmail.com>
Cc: bugtraq@securityfocus.com
In-Reply-To: <20050831191804.11058.qmail@securityfocus.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
having register_globals = On is the problem, that script should work
correctly with Off.
--
Linux garaged 2.6.9-rc1-mm1 #3 SMP Mon Aug 30 12:14:50 CDT 2004 i686
Intel(R) Pentium(R) 4 CPU 2.80GHz GenuineIntel GNU/Linux
-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GS/S d- s: a-29 C++(+++) ULAHI+++ P+ L++>+++ E--- W++ N* o-- K- w++++
O- M-- V-- PS+ PE Y-- PGP++ t- 5- X+ R tv++ b+ DI+++ D- G++ e++ h+ r+
z**
------END GEEK CODE BLOCK------
gpg-key: http://garaged.homeip.net/gpg-key.txt
