Re: CitrusDB 2.4.1 - LFI/SQLi Vulnerability

From: mbsarwin@singnset.com.sg
To: bugtraq@securityfocus.com
Cc:
Subject: Re: CitrusDB 2.4.1 - LFI/SQLi Vulnerability
Date:


Hi I tried this LFI. it does not display the /etc/password file. So ver 2.4.1. seems protected. looks like it is a false alarm.





Copyright © 1995-2019 LinuxRocket.net. All rights reserved.