Midicart PHP信息泄露漏洞-安全小百科

Midicart PHP信息泄露漏洞

漏洞ID	1107017	漏洞类型	权限许可和访问控制
发布时间	2002-10-02	更新时间	2005-10-20
CVE编号	CVE-2002-1798	CNNVD-ID	CNNVD-200212-473
漏洞平台	PHP	CVSS评分	6.4

|漏洞来源

https://www.exploit-db.com/exploits/21896
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-473

|漏洞详情

MidiCartPHP1版本存在漏洞。远程攻击者（1）借助admin/upload.php的直接请求上传任意php文件或者（2）借助admin/credit_card_info.php的直接请求访问敏感信息。

|漏洞EXP

source: http://www.securityfocus.com/bid/5855/info

A problem with the default installation of Midicart PHP may make it possible for remote users to gain access to sensitive information.

The default installation of Midicart PHP does not place sufficient access control on files residing in the 'admin' folder. Due to this lack of access control, it is possible for a remote attacker to gain access to this file and upload arbitrary files to a vulnerable system.

http://<site>/admin/upload.php

|参考资料

来源:BID
名称:5855
链接:http://www.securityfocus.com/bid/5855
来源:BID
名称:5851
链接:http://www.securityfocus.com/bid/5851
来源:XF
名称:midicart-php-access-upload(10306)
链接:http://www.iss.net/security_center/static/10306.php
来源:BUGTRAQ
名称:20021002MultipleWebSecurityHoles
链接:http://archives.neohapsis.com/archives/bugtraq/2002-10/0016.html

相关推荐: HP Web Jetadmin setinfo.hts Script Directory Traversal Vulnerability

HP Web Jetadmin setinfo.hts Script Directory Traversal Vulnerability 漏洞ID 1098689 漏洞类型 Input Validation Error 发布时间 2004-03-24 更新时间…

文章版权归作者所有，未经允许请勿转载。

THE END