eidogo.com is vulnerable to LFI in the SGF file upload in "Fetch SGF from a URL".
A malicious actor can exploit this vulnerability to retrieve sensitive files that stored in the server
Here are examples exploiting this vulnerability:
- http://eidogo.com/backend/fetch.php?url=../../../../../etc/mtab
- http://eidogo.com/backend/fetch.php?url=../../../../../etc/passwd
https://github.com/jkk/eidogo/blob/master/backend/upload.php#L32-#L37
User controlled input must be sanitized.
eidogo.com is vulnerable to LFI in the SGF file upload in "Fetch SGF from a URL".
A malicious actor can exploit this vulnerability to retrieve sensitive files that stored in the server
Here are examples exploiting this vulnerability:
https://github.com/jkk/eidogo/blob/master/backend/upload.php#L32-#L37
User controlled input must be sanitized.