SparkleBlog archives.php Path Disclosure

2005-01-15T01:16:20
ID OSVDB:13043
Type osvdb
Reporter Kovács László(kovacs.laszlo@metalogique.hu)
Modified 2005-01-15T01:16:20

Description

Vulnerability Description

SparkleBlog contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a specially crafted URL containing an invalid argument to the id variable is submitted to archives.php, which will disclose installation path information resulting in a loss of confidentiality.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

SparkleBlog contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a specially crafted URL containing an invalid argument to the id variable is submitted to archives.php, which will disclose installation path information resulting in a loss of confidentiality.

Manual Testing Notes

http://[victim]/blog/archives.php?id='

References:

Vendor URL: http://creamed-coconut.org/sparkleblog.php Security Tracker: 1012908 Secunia Advisory ID:13875 Related OSVDB ID: 13044 Related OSVDB ID: 13041 Related OSVDB ID: 13042 Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-01/0527.html ISS X-Force ID: 18916