12 matches found
twiki-exec.txt
-----------webDEViL - w3bd3vil at gmail dot com ----------- -----------TWiki Remote Code Execution header-type = $query-param'type'; So use this instead: print 'Content-type: '.$query-param'type'."\n\n"; if openF, 'logos/'.$query-param'image' local $/ = undef; print ; closeF;...
TWiki <= 4.2.2 (action) Remote Code Execution Vulnerability
No description provided by source. -----------webDEViL - w3bd3vil at gmail dot com ----------- -----------TWiki Remote Code Execution = 4.2.2-------------------- ----------developers site: http://www.twiki.org------------------- ----------CVE Ids : CVE-2008-3195--------------------------...
Debian DSA-1639-1 : twiki - command execution
It was discovered that twiki, a web-based collaboration platform, didn't properly sanitize the image parameter in its configuration script. This could allow remote users to execute arbitrary commands upon the system, or read any files which were readable by the webserver user. %NASLMINLEVEL 70300...
TWiki 4.2.2 - action Remote Code Execution
TWiki 4.2.2 - action Remote Code Execution -----------webDEViL - w3bd3vil at gmail dot com ----------- -----------TWiki Remote Code Execution header-type = $query-param'type'; So use this instead: print 'Content-type: '.$query-param'type'."\n\n"; if openF, 'logos/'.$query-param'image' local $/ =...
TWiki <= 4.2.2 (action) Remote Code Execution Vulnerability
Exploit for cgi platform in category web applications =========================================================== TWiki header-type = $query-param'type'; So use this instead: print 'Content-type: '.$query-param'type'."\n\n"; if openF, 'logos/'.$query-param'image' local $/ = undef; print ; closeF;...
[SECURITY] [DSA 1639-1] New twiki packages execution of arbitrary code
------------------------------------------------------------------------ Debian Security Advisory DSA-1639-1 [email protected] http://www.debian.org/security/ Steve Kemp September 19, 2008 http://www.debian.org/security/faq -...
CVE-2008-3195
Directory traversal vulnerability in bin/configure in TWiki before 4.2.3, when a certain step in the installation guide is skipped, allows remote attackers to read arbitrary files via a query string containing a .. dot dot in the image variable, and execute arbitrary files via unspecified vectors...
CVE-2008-3195
CVE-2008-3195 affects TWiki prior to 4.2.3. The bin/configure script is vulnerable to directory traversal via the image parameter in installation steps, allowing read access to arbitrary files and potentially code execution. Public records (exploitdb, Debian security advisory DSA-1639-1, OpenVAS ...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2008-3195. Reason: This candidate is a duplicate of CVE-2008-3195. Notes: All CVE users should reference CVE-2008-3195 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...
CVE-2008-4112
This CVE-2008-4112 entry is rejected and not active; use CVE-2008-3195 instead.
TWiki command execution vulnerability
Overview The TWiki wiki software fails to validate input passed to certain URLs. By accessing a URL containing the TWiki configuration script, an attacker may be able to read arbitrary files. Description TWiki is a wiki that is runs in the context of the Apache web server. TWiki is installed by...
TWiki bin/configure 'image' Parameter Traversal Arbitrary File Access/Execution
The version of TWiki running on the remote host allows access to the 'configure' script, and fails to sanitize the 'image' parameter of that script. When the 'action' parameter is set to 'image', an unauthenticated attacker can exploit this issue to execute arbitrary code or to view arbitrary fil...