LoveCMS 1.4 install/index.php step Parameter Traversal Arbitrary File Access

2007-02-22T00:00:00
ID EDB-ID:29637
Type exploitdb
Reporter laurent gaffie
Modified 2007-02-22T00:00:00

Description

LoveCMS 1.4 install/index.php step Parameter Traversal Arbitrary File Access. CVE-2007-1149. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/22675/info
 
LoveCMS is prone to multiple input-validation vulnerabilities, including an arbitrary-file-upload issue, a remote file-include issue, a local file-include issue, and a cross-site scripting issue.
 
An attacker can exploit these issues to steal cookie-based authentication credentials, upload an arbitrary PHP file, execute the file on the vulnerable computer in the context of the webserver process, retrieve arbitrary files from the vulnerable system in the context of the affected application, and delete arbitrary files on the server.
 
http://www.example.com/lovecms/install/index.php?step=/etc/passwd%00