Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdtEolas_Gadai1337DAY-ID-22678
HistorySep 23, 2014 - 12:00 a.m.

LittleSite 0.1 Local File Include Vulnerability

2014-09-2300:00:00
Eolas_Gadai
0day.today
14

0.02 Low

EPSS

Percentile

88.9%

JSON

Exploit for php platform in category web applications

source: http://www.securityfocus.com/bid/43495/info
 
LittleSite is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.
 
An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver process. This may allow the attacker to compromise the application and the computer; other attacks are also possible.
 
LittleSite 0.1 is vulnerable; other versions may also be affected.
 
http://www.example.com/littlesite/index.php?file=../../../../etc/passwd

#  0day.today [2018-01-04]  #

Related

packetstorm 1
prion 1
cve 1
cvelist 1
nvd 1
packetstorm
packetstorm
LittleSite 0.1 Local File Inclusion
2009-07-17 00:00:00
prion
prion
Directory traversal
2009-10-02 19:30:00
cve
cve
CVE-2009-3542
2009-10-02 19:30:00
cvelist
cvelist
CVE-2009-3542
2009-10-02 19:00:00
nvd
nvd
CVE-2009-3542
2009-10-02 19:30:00

0.02 Low

EPSS

Percentile

88.9%

JSON
Related for 1337DAY-ID-22678
packetstorm1prion1cve1cvelist1nvd1