MercuryBoard index.php debug Information Disclosure

2005-02-15T00:00:00
ID OSVDB:13787
Type osvdb
Reporter Lostmon Lords(Lostmon@gmail.com)
Modified 2005-02-15T00:00:00

Description

Vulnerability Description

MercuryBoard contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a user manipulates the index.php script and appends "&debug=1" to it. This may disclose SQL queries, files in use, web path disclosure, and templates used resulting in a loss of confidentiality.

Solution Description

Upgrade to version 1.1.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

MercuryBoard contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a user manipulates the index.php script and appends "&debug=1" to it. This may disclose SQL queries, files in use, web path disclosure, and templates used resulting in a loss of confidentiality.

Manual Testing Notes

http://[target]/index.php?a=forum&f=\&debug=1
http://[target]/index.php?a=\&debug=1 http://[target]/index.php?a=&debug=1 http://[target]/index.php?a=forum&debug=1 http://[target]/index.php?c=&debug=1

References:

Security Tracker: 1013626 Secunia Advisory ID:14284 Related OSVDB ID: 13263 Related OSVDB ID: 13267 Related OSVDB ID: 13262 Related OSVDB ID: 13264 Related OSVDB ID: 13266 Related OSVDB ID: 13265 Related OSVDB ID: 13764 Other Advisory URL: http://lostmon.blogspot.com/2005/02/mercuryboard-debug-information.html CVE-2005-0460