phpThumb – ‘phpThumbDebug’ Information Disclosure

Exploit Database
35 阅读

作者： mook

日期： 2011-05-06
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/17250/

# Exploit Title: phpThumb 'phpThumbDebug' Information Disclosure
# Google Dork: inurl:phpThumb.php
# Date: 06/05/2011
# Author: mook
# Software Link: http://phpthumb.sourceforge.net/#download
# Version: 1.7.9
# Tested on: linux

Vulnerability:

Information disclosure which includes absolute system paths, os
flavour, application configuration information and other installed
application versions.

The vulnerability can be triggered by appending 'phpThumbDebug=" and
any number from 0 to 10 to any phpThumb.php request. e.g:



The response will be an image render of the debug information.

Remediation:

The responsible code can be found in phpThumb.php itself by changing
the default "$PHPTHUMB_CONFIG['disable_debug']= false;" to
"$PHPTHUMB_CONFIG['disable_debug']= true;".

last Exploits
phpThumb – ‘phpThumbDebug’ Information Disclosure的更多信息

WordPress Plugin WP Ajax Recent Posts 1.0.1 – ‘do’ Cross-Site Scripting：
TVT TD-2308SS-B DVR – Directory Traversal：
Beetel BCM96338 Router – DNS Change：
addressbook 9.0.0.1 – ‘id’ SQL Injection：
Horde IMP Webmail 4.3.7 – ‘fetchmailprefs.php’ HTML Injection：
FS Trademe Clone – ‘id’ SQL Injection：
Alibaba Clone Tritanium Version – ‘news_desc.html’ SQL Injection：
Getsimple CMS 2.03 – ‘upload-ajax.php’ Arbitrary File Upload：