Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:5117
HistoryApr 28, 2009 - 12:00 a.m.

TotalCalendar cms_detect.php模块本地文件包含漏洞

2009-04-2800:00:00
Root
www.seebug.org
29

0.005 Low

EPSS

Percentile

75.8%

JSON

BUGTRAQ ID: 34634
CVE(CAN) ID: CVE-2009-1406

TotalCalendar是一种基于Web的日程管理系统。

TotalCalendar的cms_detect.php模块没有正确地验证对include参数所传送的输入便用于包含文件,远程攻击者可以通过目录遍历攻击包含本地资源的任意文件。以下是cms_detect.php中的有漏洞代码段:

Line 26 : $include = isset($_REQUEST[‘include’]) ? $_REQUEST[‘include’] : null;
Line 115 : if(!empty($include)) require_once($inc_dir.$include);

SweetPHP TotalCalendar 2.4
SweetPHP

目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本:

<a href=“http://sweetphp.com/nuke/modules.php?name=Script_Preview&amp;script=12” target=“_blank”>http://sweetphp.com/nuke/modules.php?name=Script_Preview&amp;script=12</a>


                                                http://127.0.0.1/[path]/cms_detect.php?include=../../../../../../BOOTSECT.BAK

Related

cvelist 1
nvd 1
cve 1
prion 1
cvelist
cvelist
CVE-2009-1406
2009-04-24 14:00:00
nvd
nvd
CVE-2009-1406
2009-04-24 14:30:00
cve
cve
CVE-2009-1406
2009-04-24 14:30:00
prion
prion
Directory traversal
2009-04-24 14:30:00

0.005 Low

EPSS

Percentile

75.8%

JSON
Related for SSV:5117
cvelist1nvd1cve1prion1