facebook facebook twitter rss

Angora Guestbook v1.5 File Disclosure (Backup)/LFI vulnerabilities

Author: TUNISIAN CYBER , Published: 08-12-2013
X-------------------------------------------------------------X
_____ _ _ _ _ _____ _____ _____ ___ _ _ _______ _______ ___________
|_ _| | | | \ | |_ _/ ___|_ _|/ _ \ | \ | | / __ \ \ / / ___ \ ___| ___ \
| | | | | | \| | | | \ `--. | | / /_\ \| \| | | / \/\ V /| |_/ / |__ | |_/ /
| | | | | | . ` | | | `--. \ | | | _ || . ` | | | \ / | ___ \ __|| /
| | | |_| | |\ |_| |_/\__/ /_| |_| | | || |\ | | \__/\ | | | |_/ / |___| |\ \
\_/ \___/\_| \_/\___/\____/ \___/\_| |_/\_| \_/ \____/ \_/ \____/\____/\_| \_|
X-------------------------------------------------------------X


[+] Author: TUNISIAN CYBER
[+] Exploit Title: Angora Guestbook v1.5 File Disclosure (Backup)/LFI vulnerabilities
[+] Date: 8-12-2013
[+] Vendor:aguestbook.sourceforge.net/
[+] Category: WebApp
[+] Google Dork: n/a
[+] Tested on: Win7 , ubuntu 13.04


########################################################################################


I/File Disclosure (Backup)

site.dom/[path]/guestbook/admin/backup <-- unrestricted access to the backup file

from localtest:http://oi44.tinypic.com/10igt1g.jpg

Solution: 1/Upgrade to v1.6.1
2/Creat index.php:
<?php
die("Access Denied");
?>



II/Local File Inclusion:

File:/admin/index.php
Line: 26

include_once "../languages/" . $config['adminLang'] . "/admin.php";

From LocalTest:http://oi43.tinypic.com/2j5cns0.jpg

Solution: Upgrade to v1.6.1
-------------------------

./3nD
########################################################################################
Greets to: XMaXtn, N43il HacK3r, XtechSEt

Like us on Facebook :