Exploitation Summary
EIP tracks 1 public exploit for CVE-2010-0967. PoCs published by ITSecTeam.
AI-analyzed exploit summary This is a writeup describing local file inclusion (LFI) and SQL injection vulnerabilities in the ADMP script. It provides paths and parameters for exploitation but lacks executable code.
Description
Multiple directory traversal vulnerabilities in Geekhelps ADMP 1.01, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the style parameter to (1) colorvoid/footer.php, (2) default-green/footer.php, (3) default-orange/footer.php, and (4) default/footer.php in themes/. NOTE: some of these details are obtained from third party information.
Exploits (1)
This is a writeup describing local file inclusion (LFI) and SQL injection vulnerabilities in the ADMP script. It provides paths and parameters for exploitation but lacks executable code.