MyBB 1.2 Local File Incusion

2006-01-3100:00:00

vulners.com

JSON

Invalid characters removed from From: [email protected], |@securityfocus.com,

D3vil-0x1 MyBB Bug

Local File Inclusion

MyBB 1.2 -> Admin Can Include Local File :)

File :- admin/plugins.php

                                    Line :- 51

//*

    if&#40;$mybb-&gt;input[&#39;action&#39;] == &quot;activate&quot;&#41;

    {

    $codename = $mybb-&gt;input[&#39;plugin&#39;]; &lt;&lt; Input From POST

    $file = $codename.&quot;.php&quot;;                               &lt;&lt; Set File Type [ we can remove the type

by NULL ( %00 ) ]

    if&#40;$mybb-&gt;input[&#39;activate&#39;]&#41;

    {

    .....
    .....

    }

    elseif&#40;$mybb-&gt;input[&#39;deactivate&#39;]&#41;

    {

    .....
    .....

    }



    include &quot;./inc/plugins/$file&quot;; &lt;&lt; Include BIG BUG :P

*//
#---------------------------------------------------------#

JSON