Fonality trixbox – ‘repo.php’ Directory Traversal

Exploit Database
18 阅读

作者： AtT4CKxT3rR0r1ST

日期： 2014-07-17
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/39350/

source: https://www.securityfocus.com/bid/68719/info

ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input.

Exploiting these vulnerabilities could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

ol-commerce 2.1.1 is vulnerable; other versions may also be affected. 

Http://www.example.com/maint/modules/repo/repo.php?lang=../../../../../../../../etc/passwd%00

last Exploits
Fonality trixbox – ‘repo.php’ Directory Traversal的更多信息

Opsview 4.6.2 – Multiple Cross-Site Scripting Vulnerabilities：
Clipbucket 2.6 – ‘view_item.php?type’ Cross-Site Scripting：
PaulPrinting CMS – (Search Delivery) Cross Site Scripting：
BrowserCRM 5.100.1 – ‘contact_id’ SQL Injection：
Xataface 1.x – ‘action’ Local File Inclusion：
ClanSphere 2011.3 – ‘cs_lang’ Cookie Local File Inclusion：
WordPress Plugin Backup Guard 1.5.8 – Remote Code Execution (Authenticated)：
CmsLite 1.4 – ‘S’ SQL Injection：