Overview
Application Path Disclosure may result when internal application paths are disclosed to the user-agent (browser). These paths can be used in other attacks such as forced browsing.
Video Tutorials
Discovery Methodology
Attempt to discover if it is possible to cause errors by injecting all input parameters with characters that are reserved in various contexts. Search web page sources (view source) for internal application paths.
Exploitation
Search pages with and without injection. Use the grep feature of Burp-Suite to seach for application path patterns that match the web application framework type.
Videos
Warning: Undefined property: YouTubeVideoHandler::$IntroductiontoFuzzingWebApplicationswithBurpSuiteIntruderTool in /var/www/mutillidae/includes/hints/application-path-disclosure-hint.inc on line 25
Fatal error: Uncaught Exception: /var/www/mutillidae/classes/MySQLHandler.php on line 229: You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near '' at line 1 Query: SELECT identificationToken, title FROM youTubeVideos WHERE recordIndetifier = ; (1064) [mysqli_sql_exception] <br /> in /var/www/mutillidae/classes/MySQLHandler.php:237 Stack trace: #0 /var/www/mutillidae/classes/MySQLHandler.php(327): MySQLHandler->doExecuteQuery('SELECT identifi...') #1 /var/www/mutillidae/classes/SQLQueryHandler.php(309): MySQLHandler->executeQuery('SELECT identifi...') #2 /var/www/mutillidae/classes/YouTubeVideoHandler.php(23): SQLQueryHandler->getYouTubeVideo(NULL) #3 /var/www/mutillidae/classes/YouTubeVideoHandler.php(340): YouTubeVideos->getYouTubeVideo(NULL) #4 /var/www/mutillidae/includes/hints/application-path-disclosure-hint.inc(25): YouTubeVideoHandler->getYouTubeVideo(NULL) #5 /var/www/mutillidae/hints-page-wrapper.php(75): include_once('/var/www/mutill...') #6 {main} thrown in /var/www/mutillidae/classes/MySQLHandler.php on line 237