[Full-Disclosure] phpWebSite-0.10.0_exploit

Fri Feb 25 16:23:05 GMT 2005

Well I cant get this to work.

The annoucements module doesnt allow non-graphics extensions so the PHP
file doesnt get uploaded.

Regards,

Colin.

             tjomka                                                        
             <tjomka at navigator                                             
             .lv>                                                       To 
             Sent by:                  full-disclosure at lists.netsys.com    
             full-disclosure-b                                          cc 
             ounces at lists.nets                                             
             ys.com                                                Subject 
                                       [Full-Disclosure] phpWebSite-0.10.0 
                                       _exploit                            
             24/02/2005 22:16                                              

             Please respond to                                             
                  tjomka                                                   
             <tjomka at navigator                                             
                   .lv>                                                    

phpWebSite-0.10.0_exploit(See attached file: nst.gif.php)(See attached
file: phpWebSite-0.10.0.EN.txt)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

***********************************************************************************

This e-mail is confidential and may contain privileged information.  If you 
are not the addressee or if you have received the e-mail in error, it may
be unlawful for you to read, copy, distribute, disclose or otherwise use the information which it contains.  Under these circumstances, please notify us immediately by returning this mail to 'mailerror at csplc.com' and deleting this e-mail from your system.

Any views expressed by an individual within this e-mail do not necessarily reflect the views of Cadbury Schweppes Plc or its subsidiaries.  Cadbury Schweppes Plc will not be bound by any agreement entered into as a result of this email, unless its intention is clearly evidenced in the body of the email.  Whilst we have taken reasonable steps to ensure that this e-mail and attachments are free from viruses, recipients are advised to subject this mail to their own virus checking, in keeping with good computing practice. Please
note that email received by Cadbury Schweppes Plc or its subsidiaries may be monitored in accordance with the prevailing law in the United Kingdom.

***********************************************************************************

-------------- next part --------------
A non-text attachment was scrubbed...
Name: nst.gif.php
Type: application/octet-stream
Size: 156 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20050225/5607e762/attachment.obj 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: phpWebSite-0.10.0.EN.txt
Type: application/octet-stream
Size: 679 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20050225/5607e762/attachment-0001.obj 