EasyNews NewsDatabase/Template修正漏洞

EasyNews NewsDatabase/Template修正漏洞

漏洞ID 1106527 漏洞类型 路径遍历
发布时间 2001-12-01 更新时间 2005-10-20
图片[1]-EasyNews NewsDatabase/Template修正漏洞-安全小百科CVE编号 CVE-2001-1525
图片[2]-EasyNews NewsDatabase/Template修正漏洞-安全小百科CNNVD-ID CNNVD-200112-175
漏洞平台 PHP CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/21168
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200112-175
|漏洞详情
easyNews1.5版本及之前版本的注释行为中存在目录遍历漏洞。远程攻击者可以借助cid参数中的”..”修改news.dat、template.dat及可能其他文件。
|漏洞EXP
source: http://www.securityfocus.com/bid/3643/info

EasyNews is a free, open-source script for displaying news stories on a website.

EasyNews is prone to a vulnerability which may allow a remote attacker to modify information in its Newsdatabase. As a result, a remote attacker may post unmoderated comments or possibly modify information in the templates used by EasyNews.

This may be exploited via a specially crafted web request.

Earlier versions may also be vulnerable.

http://[target]/index.php?action=comments&do=save&id=1&cid=../news&name=11/1
1/11&kommentar=%20&email=hax0r&zeit=you%20suck,11:11,../news,bugs@securityal
ert.com&datum=easynews%20exploited
|参考资料

来源:BID
名称:3643
链接:http://www.securityfocus.com/bid/3643
来源:XF
名称:easynews-php-modify-data(7657)
链接:http://www.iss.net/security_center/static/7657.php
来源:BUGTRAQ
名称:20011201easynews1.5let’sremoteusersmodifydatabase
链接:http://archives.neohapsis.com/archives/bugtraq/2001-12/0000.html

相关推荐: SurfControl Web Filter 4.2.0.1 – File Disclosure

SurfControl Web Filter 4.2.0.1 – File Disclosure 漏洞ID 1053978 漏洞类型 发布时间 2003-06-19 更新时间 2003-06-19 CVE编号 N/A CNNVD-ID N/A 漏洞平台 Win…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享