Lotus CMS Fraise 3.0 - LFI - Remote Code Execution Exploit

No description provided by source...

CVE-2011-0518

LotusCMS 3.0 Fraise is affected by a remote code execution vulnerability tied to its Router() function. An attacker can pass PHP code via the page parameter (or system parameter abuse) and trigger an eval/remote code execution through core/lib/router.php, allowing local file inclusion or code exe...

CVE-2011-0518

Directory traversal vulnerability in core/lib/router.php in LotusCMS Fraise 3.0, when magicquotesgpc is disabled, allows remote attackers to include and execute arbitrary local files via the system parameter to index.php...

Lotus CMS Fraise 3.0 - Local File Inclusion Remote Code Execution

Lotus CMS Fraise 3.0 - Local File Inclusion Remote Code Execution !/usr/bin/python Lotus CMS Fraise v3.0 LFI - Remote Code Execution Exploit greetz Tecr0C :0 Vuln: lines 15-23 in core/lib/router.php ---------- sof //Get page request if any $page = $this-getInputString"page", "index"; //Get plugin...

Lotus CMS Fraise 3.0 Local File Inclusion / Code Execution

!/usr/bin/python Lotus CMS Fraise v3.0 LFI - Remote Code Execution Exploit greetz Tecr0C :0 Vuln: lines 15-23 in core/lib/router.php ---------- sof //Get page request if any $page = $this-getInputString"page", "index"; //Get plugin request if any $plugin = $this-getInputString"system", "Page"; //...

Lotus CMS Fraise 3.0 - Local File Inclusion / Remote Code Execution

!/usr/bin/python Lotus CMS Fraise v3.0 LFI - Remote Code Execution Exploit greetz Tecr0C :0 Vuln: lines 15-23 in core/lib/router.php ---------- sof //Get page request if any $page = $this-getInputString"page", "index"; //Get plugin request if any $plugin = $this-getInputString"system", "Page"; //...