Maian Survey 1.1 Local File Inclusion / Open Redirection

Maian Survey 1.1 Local File Inclusion / Open Redirection: Posted Jul 19, 2012; Authored by PuN!Sh3r; Maian Survey version 1.1 suffers from local file inclusion and open redirection vulnerabilities.; tags | exploit, local, vulnerability, file inclusion; SHA-256 | 20f830e6dfb378cb55c38decf34ba84e27e1652f26557fde69340b878b746147; Download | Favorite | View

Maian Survey 1.1 Local File Inclusion / Open Redirection

===========================================================================
Author: PuN!Sh3r
Vulnerable Software: Maian Survey v 1.1
Official Site:http://www.maianscriptworld.co.uk/
===========================================================================
Vuln Desc:

1.Local File Inclusion:

Vuln  here : http://victim.tld/[PATH]/admin/index.php?cmd=LFİ_here


Where is the Vuln???
Let's look snippet code.
------------------------------------------------------------------
\\admin/index.php
===============================_-Snip-_=================================


$cmd = (isset($_GET['cmd']) ? $_GET['cmd'] : 'home');

include(PATH.'templates/'.$cmd.'.php');

===============================_-End Snipp-_===========================


2.Open Forward vuln:
Desc: We can Redirect users to another page(For Phising).

===============================_-Snip-_=================================

header("Location: ".REL_PATH."index.php?survey=".$_GET['preview']);

===============================_-End Snipp-_===========================




+++++++++My Special thanks to:++++++++++++++++

Anti-armenia.org & Anti-armenia Team

Greetz to My close friend ikus4 && All Azerbaijani blackhatzzz


Respect!!

./PuN!Sh3r

Top Authors In Last 30 Days

Red Hat 194 files
Ubuntu 67 files
Debian 24 files
Valentin Lobstein 11 files
nu11secur1ty 8 files
Apple 6 files
Google Security Research 5 files
malvuln 4 files
Ersin Erenler 4 files
E1.Coders 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,011)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,194)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,473)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,437)
UNIX (9,390)
UnixWare (187)
Windows (6,649)
Other

Maian Survey 1.1 Local File Inclusion / Open Redirection

Maian Survey 1.1 Local File Inclusion / Open Redirection

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Maian Survey 1.1 Local File Inclusion / Open Redirection

Share This

Maian Survey 1.1 Local File Inclusion / Open Redirection

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems