{"id":134,"date":"2014-06-26T10:45:24","date_gmt":"2014-06-26T08:45:24","guid":{"rendered":"https:\/\/hacksecproject.com\/?p=134"},"modified":"2018-11-23T17:00:32","modified_gmt":"2018-11-23T17:00:32","slug":"whatsapp-lfi-vulnerability","status":"publish","type":"post","link":"https:\/\/hacksecproject.com\/?p=134","title":{"rendered":"WhatsApp: LFD Vulnerability"},"content":{"rendered":"<p>Before starting to describe the issue found on WhatsApp I want to introduce the LFD Vulnerability.<\/p>\n<p>The Local File Disclosure vulnerability allows an attacker to read the content of files and get important information like ftp, mysql credentials, usually exploiting a &#8220;dynamic file inclusion&#8221; mechanisms implemented in the target application. The vulnerability occurs due to the use of user-supplied input without proper validation.<br \/>\nThis can lead to something as outputting the contents of the file, but depending on the severity, it can also lead to:<!--more--><\/p>\n<ul>\n<li>Code execution on the underlying operating system ( in case web application has root privileges and can read the content of the \/etc\/shadow file and in case the attacker is able to crack \/etc\/shadow hashed passwords.)<\/li>\n<li>Sensitive Information Disclosure<\/li>\n<\/ul>\n<p>The vulnerable link that allows me to download the \/etc\/passwd file is :<\/p>\n<p><a title=\"http:\/\/media.whatsapp.com\/directory\/..%252f..%252f..%252f..%252fetc%252fpasswd\" href=\"http:\/\/media.whatsapp.com\/directory\/..%252f..%252f..%252f..%252fetc%252fpasswd\">http:\/\/media.whatsapp.com\/directory\/..%252f..%252f..%252f..%252fetc%252fpasswd<\/a><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-large wp-image-26\" src=\"https:\/\/gianfrancoruggeri.com\/hacksecproject\/wp-content\/uploads\/2018\/04\/Schermata-del-2014-06-05-113107-1024x578.png\" alt=\"\" width=\"525\" height=\"296\" srcset=\"https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/Schermata-del-2014-06-05-113107-1024x578.png 1024w, https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/Schermata-del-2014-06-05-113107-300x169.png 300w, https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/Schermata-del-2014-06-05-113107-768x434.png 768w, https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/Schermata-del-2014-06-05-113107.png 1360w\" sizes=\"auto, (max-width: 525px) 85vw, 525px\" \/><br \/>\nand this is the content of the \/etc\/passwd file<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-large wp-image-8\" src=\"https:\/\/gianfrancoruggeri.com\/hacksecproject\/wp-content\/uploads\/2018\/04\/aa-1024x578.png\" alt=\"\" width=\"525\" height=\"296\" srcset=\"https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/aa-1024x578.png 1024w, https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/aa-300x169.png 300w, https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/aa-768x434.png 768w, https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/aa.png 1360w\" sizes=\"auto, (max-width: 525px) 85vw, 525px\" \/><\/p>\n<p>The bug has now been fixed.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Before starting to describe the issue found on WhatsApp I want to introduce the LFD Vulnerability. The Local File Disclosure vulnerability allows an attacker to read the content of files and get important information like ftp, mysql credentials, usually exploiting a &#8220;dynamic file inclusion&#8221; mechanisms implemented in the target application. The vulnerability occurs due to &hellip; <a href=\"https:\/\/hacksecproject.com\/?p=134\" class=\"more-link\">Leggi tutto<span class=\"screen-reader-text\"> &#8220;WhatsApp: LFD Vulnerability&#8221;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":27,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"class_list":["post-134","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized-en"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>WhatsApp: LFD Vulnerability -<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/hacksecproject.com\/?p=134\" \/>\n<meta property=\"og:locale\" content=\"it_IT\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"WhatsApp: LFD Vulnerability -\" \/>\n<meta property=\"og:description\" content=\"Before starting to describe the issue found on WhatsApp I want to introduce the LFD Vulnerability. The Local File Disclosure vulnerability allows an attacker to read the content of files and get important information like ftp, mysql credentials, usually exploiting a &#8220;dynamic file inclusion&#8221; mechanisms implemented in the target application. The vulnerability occurs due to &hellip; Leggi tutto &quot;WhatsApp: LFD Vulnerability&quot;\" \/>\n<meta property=\"og:url\" content=\"https:\/\/hacksecproject.com\/?p=134\" \/>\n<meta property=\"article:published_time\" content=\"2014-06-26T08:45:24+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2018-11-23T17:00:32+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/wa-.jpeg\" \/>\n\t<meta property=\"og:image:width\" content=\"950\" \/>\n\t<meta property=\"og:image:height\" content=\"534\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Medu554\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Scritto da\" \/>\n\t<meta name=\"twitter:data1\" content=\"Medu554\" \/>\n\t<meta name=\"twitter:label2\" content=\"Tempo di lettura stimato\" \/>\n\t<meta name=\"twitter:data2\" content=\"1 minuto\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/?p=134#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/?p=134\"},\"author\":{\"name\":\"Medu554\",\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/#\\\/schema\\\/person\\\/526444cfaef818c23a7b4e4519573689\"},\"headline\":\"WhatsApp: LFD Vulnerability\",\"datePublished\":\"2014-06-26T08:45:24+00:00\",\"dateModified\":\"2018-11-23T17:00:32+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/?p=134\"},\"wordCount\":167,\"image\":{\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/?p=134#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/hacksecproject.com\\\/wp-content\\\/uploads\\\/2018\\\/04\\\/wa-.jpeg\",\"articleSection\":[\"Uncategorized\"],\"inLanguage\":\"it-IT\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/?p=134\",\"url\":\"https:\\\/\\\/hacksecproject.com\\\/?p=134\",\"name\":\"WhatsApp: LFD Vulnerability -\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/?p=134#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/?p=134#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/hacksecproject.com\\\/wp-content\\\/uploads\\\/2018\\\/04\\\/wa-.jpeg\",\"datePublished\":\"2014-06-26T08:45:24+00:00\",\"dateModified\":\"2018-11-23T17:00:32+00:00\",\"author\":{\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/#\\\/schema\\\/person\\\/526444cfaef818c23a7b4e4519573689\"},\"breadcrumb\":{\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/?p=134#breadcrumb\"},\"inLanguage\":\"it-IT\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/hacksecproject.com\\\/?p=134\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"it-IT\",\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/?p=134#primaryimage\",\"url\":\"https:\\\/\\\/hacksecproject.com\\\/wp-content\\\/uploads\\\/2018\\\/04\\\/wa-.jpeg\",\"contentUrl\":\"https:\\\/\\\/hacksecproject.com\\\/wp-content\\\/uploads\\\/2018\\\/04\\\/wa-.jpeg\",\"width\":950,\"height\":534},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/?p=134#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/hacksecproject.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"WhatsApp: LFD Vulnerability\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/#website\",\"url\":\"https:\\\/\\\/hacksecproject.com\\\/\",\"name\":\"\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/hacksecproject.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"it-IT\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/hacksecproject.com\\\/#\\\/schema\\\/person\\\/526444cfaef818c23a7b4e4519573689\",\"name\":\"Medu554\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"it-IT\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/29ba1a61e7548d882dbad311db32d5e08fdc44eee25a59452ea4ac5a94ed80b3?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/29ba1a61e7548d882dbad311db32d5e08fdc44eee25a59452ea4ac5a94ed80b3?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/29ba1a61e7548d882dbad311db32d5e08fdc44eee25a59452ea4ac5a94ed80b3?s=96&d=mm&r=g\",\"caption\":\"Medu554\"},\"url\":\"https:\\\/\\\/hacksecproject.com\\\/?author=2\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"WhatsApp: LFD Vulnerability -","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/hacksecproject.com\/?p=134","og_locale":"it_IT","og_type":"article","og_title":"WhatsApp: LFD Vulnerability -","og_description":"Before starting to describe the issue found on WhatsApp I want to introduce the LFD Vulnerability. The Local File Disclosure vulnerability allows an attacker to read the content of files and get important information like ftp, mysql credentials, usually exploiting a &#8220;dynamic file inclusion&#8221; mechanisms implemented in the target application. The vulnerability occurs due to &hellip; Leggi tutto \"WhatsApp: LFD Vulnerability\"","og_url":"https:\/\/hacksecproject.com\/?p=134","article_published_time":"2014-06-26T08:45:24+00:00","article_modified_time":"2018-11-23T17:00:32+00:00","og_image":[{"width":950,"height":534,"url":"https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/wa-.jpeg","type":"image\/jpeg"}],"author":"Medu554","twitter_card":"summary_large_image","twitter_misc":{"Scritto da":"Medu554","Tempo di lettura stimato":"1 minuto"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/hacksecproject.com\/?p=134#article","isPartOf":{"@id":"https:\/\/hacksecproject.com\/?p=134"},"author":{"name":"Medu554","@id":"https:\/\/hacksecproject.com\/#\/schema\/person\/526444cfaef818c23a7b4e4519573689"},"headline":"WhatsApp: LFD Vulnerability","datePublished":"2014-06-26T08:45:24+00:00","dateModified":"2018-11-23T17:00:32+00:00","mainEntityOfPage":{"@id":"https:\/\/hacksecproject.com\/?p=134"},"wordCount":167,"image":{"@id":"https:\/\/hacksecproject.com\/?p=134#primaryimage"},"thumbnailUrl":"https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/wa-.jpeg","articleSection":["Uncategorized"],"inLanguage":"it-IT"},{"@type":"WebPage","@id":"https:\/\/hacksecproject.com\/?p=134","url":"https:\/\/hacksecproject.com\/?p=134","name":"WhatsApp: LFD Vulnerability -","isPartOf":{"@id":"https:\/\/hacksecproject.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/hacksecproject.com\/?p=134#primaryimage"},"image":{"@id":"https:\/\/hacksecproject.com\/?p=134#primaryimage"},"thumbnailUrl":"https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/wa-.jpeg","datePublished":"2014-06-26T08:45:24+00:00","dateModified":"2018-11-23T17:00:32+00:00","author":{"@id":"https:\/\/hacksecproject.com\/#\/schema\/person\/526444cfaef818c23a7b4e4519573689"},"breadcrumb":{"@id":"https:\/\/hacksecproject.com\/?p=134#breadcrumb"},"inLanguage":"it-IT","potentialAction":[{"@type":"ReadAction","target":["https:\/\/hacksecproject.com\/?p=134"]}]},{"@type":"ImageObject","inLanguage":"it-IT","@id":"https:\/\/hacksecproject.com\/?p=134#primaryimage","url":"https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/wa-.jpeg","contentUrl":"https:\/\/hacksecproject.com\/wp-content\/uploads\/2018\/04\/wa-.jpeg","width":950,"height":534},{"@type":"BreadcrumbList","@id":"https:\/\/hacksecproject.com\/?p=134#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/hacksecproject.com\/"},{"@type":"ListItem","position":2,"name":"WhatsApp: LFD Vulnerability"}]},{"@type":"WebSite","@id":"https:\/\/hacksecproject.com\/#website","url":"https:\/\/hacksecproject.com\/","name":"","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/hacksecproject.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"it-IT"},{"@type":"Person","@id":"https:\/\/hacksecproject.com\/#\/schema\/person\/526444cfaef818c23a7b4e4519573689","name":"Medu554","image":{"@type":"ImageObject","inLanguage":"it-IT","@id":"https:\/\/secure.gravatar.com\/avatar\/29ba1a61e7548d882dbad311db32d5e08fdc44eee25a59452ea4ac5a94ed80b3?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/29ba1a61e7548d882dbad311db32d5e08fdc44eee25a59452ea4ac5a94ed80b3?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/29ba1a61e7548d882dbad311db32d5e08fdc44eee25a59452ea4ac5a94ed80b3?s=96&d=mm&r=g","caption":"Medu554"},"url":"https:\/\/hacksecproject.com\/?author=2"}]}},"_links":{"self":[{"href":"https:\/\/hacksecproject.com\/index.php?rest_route=\/wp\/v2\/posts\/134","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/hacksecproject.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hacksecproject.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hacksecproject.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/hacksecproject.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=134"}],"version-history":[{"count":6,"href":"https:\/\/hacksecproject.com\/index.php?rest_route=\/wp\/v2\/posts\/134\/revisions"}],"predecessor-version":[{"id":284,"href":"https:\/\/hacksecproject.com\/index.php?rest_route=\/wp\/v2\/posts\/134\/revisions\/284"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/hacksecproject.com\/index.php?rest_route=\/wp\/v2\/media\/27"}],"wp:attachment":[{"href":"https:\/\/hacksecproject.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=134"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hacksecproject.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=134"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hacksecproject.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=134"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}