BigACE 2.7.5 – ‘LANGUAGE’ Directory Traversal

Exploit Database
23 阅读

作者： Hossein Hezami

日期： 2014-03-19
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/39126/

source: https://www.securityfocus.com/bid/66350/info

BIGACE Web CMS is prone to an SQL-injection vulnerability and a local file-include vulnerability because it fails to sufficiently sanitize user-supplied data.

An attacker can exploit these vulnerabilities to compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, use directory-traversal strings to execute local script code in the context of the application, or obtain sensitive information that may aid in further attacks.

BIGACE Web CMS 2.7.5 is vulnerable; other versions may also be affected. 

http://www.example.com/bigace_2.7.5/bigace_install_2.7.5/public/index.php?menu=3&LANGUAGE=[LFI]

last Exploits
BigACE 2.7.5 – ‘LANGUAGE’ Directory Traversal的更多信息

cPassMan 1.82 – Remote Command Execution：
Microsoft IIS – Short File/Folder Name Disclosure：
Thru Managed File Transfer Portal 9.0.2 – SQL Injection：
Symantec Web Gateway 5.0.3.18 – Arbitrary Password Change：
WordPress Plugin WP-UserOnline 2.88.0 – Stored Cross Site Scripting (XSS)：
YaCOMAS 0.3.6 Alpha – Multiple Vulnerabilities：
Joomla! Component education – SQL Injection：
WordPress Plugin Domain Check 1.0.16 – Reflected Cross-Site Scripting (XSS) (Authenticated)：