ActiveCampaign KnowledgeBuilder index.php category Variable Path Disclosure

2005-11-24T17:23:10
ID OSVDB:21097
Type osvdb
Reporter r0t(krustevs@googlemail.com)
Modified 2005-11-24T17:23:10

Description

Vulnerability Description

KnowledgeBuilder contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker passes input to the 'category' parameter in the 'index.php' script, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

KnowledgeBuilder contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker passes input to the 'category' parameter in the 'index.php' script, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

Manual Testing Notes

http://[victim]//KnowledgeBuilder/index.php?category=[Full Path Disclosure]

References:

Vendor URL: http://www.activecampaign.com/kb/ Secunia Advisory ID:17732 Related OSVDB ID: 21098 Related OSVDB ID: 21096 Other Advisory URL: http://osvdb.org/ref/21/21097-knowledgebuilder.txt Other Advisory URL: http://pridels.blogspot.com/2005/11/activecampaign-knowledgebuilder-vuln.html