CubeCart index.php cat_id Parameter Path Disclosure

2004-10-07T21:01:29
ID OSVDB:10583
Type osvdb
Reporter Pedro Sanches(pedro_sanches@sapo.pt)
Modified 2004-10-07T21:01:29

Description

Vulnerability Description

CubeCart contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker supplies an invalid argument to the "cat_id" parameter of the index.php script, which will disclose the web server path resulting in a loss of confidentiality.

Solution Description

Upgrade to version 2.0.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

CubeCart contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker supplies an invalid argument to the "cat_id" parameter of the index.php script, which will disclose the web server path resulting in a loss of confidentiality.

Manual Testing Notes

http://[victim]/store/index.php?cat_id='

References:

Vendor URL: http://www.cubecart.com/site/home/ Security Tracker: 1011560 Secunia Advisory ID:12764 Related OSVDB ID: 10584 Mail List Post: http://seclists.org/lists/bugtraq/2004/Oct/0051.html CVE-2004-1579