Coppermine Photo Gallery 多个输入验证漏洞

Coppermine Photo Gallery 多个输入验证漏洞

漏洞ID 1107917 漏洞类型 输入验证
发布时间 2004-04-30 更新时间 2005-10-20
图片[1]-Coppermine Photo Gallery 多个输入验证漏洞-安全小百科CVE编号 CVE-2004-1985
图片[2]-Coppermine Photo Gallery 多个输入验证漏洞-安全小百科CNNVD-ID CNNVD-200404-101
漏洞平台 PHP CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/24072
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200404-101
|漏洞详情
CopperminePhotoGallery是一款基于WEB的图形库管理程序。CopperminePhotoGallery多处对用户提交的输入缺少充分过滤,远程攻击者可以利用这些漏洞执行任意命令,获得COOKIE数据,获得敏感文件路径等信息。具体问题如下:1、路径泄露:直接访问一些配置脚本,可获得敏感路径信息。2、跨站脚本攻击coppermine/docs/menu.inc.php’对用户提交URI缺少过滤,攻击者利用这个漏洞可获得敏感信息。3、任意目录浏览:如果有PHP-Nuke管理员权限,访问coppermine模块可绕过目录限制访问其他文件。4、任意命令执行:如果有PHP-Nuke管理员权限,访问coppermine模块,可在coppermine配置面板部分参数中输入SHELL命令,而以WEB进程权限执行。
|漏洞EXP
source: http://www.securityfocus.com/bid/10253/info

Coppermine Photo Gallery is reported prone to multiple input-validation vulnerabilities, some of which may lead to arbitrary command execution. These issues occur because the application fails to properly sanitize and validate user-supplied input before using it in dynamic content and in function calls that execute system commands. 

Attackers may exploit these issues to steal cookie-based authentication credentials, map the application root directory of the affected application, execute arbitrary commands, and include arbitrary files. Other attacks are also possible.

http://www.example.com/nuke72/modules/coppermine/docs/menu.inc.php?CPG_URL=foobar"><body%20onload=alert(document.cookie);>
|参考资料

来源:XF
名称:coppermine-menuincpho-xss(16040)
链接:http://xforce.iss.net/xforce/xfdb/16040
来源:www.waraxe.us
链接:http://www.waraxe.us/index.php?modname=sa&id;=26
来源:BID
名称:10253
链接:http://www.securityfocus.com/bid/10253
来源:SECUNIA
名称:11524
链接:http://secunia.com/advisories/11524
来源:BUGTRAQ
名称:20040502[waraxe-2004-SA#026-MultiplevulnerabilitiesinCopperminePhotoGalleryforPhpNuke]
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=108360247732014&w;=2
来源:OSVDB
名称:5757
链接:http://www.osvdb.org/5757

相关推荐: Kietu Hit.PHP Remote File Inclusion Vulnerability

Kietu Hit.PHP Remote File Inclusion Vulnerability 漏洞ID 1100891 漏洞类型 Configuration Error 发布时间 2003-02-15 更新时间 2003-02-15 CVE编号 N/A …

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享